CVE-2007-4699
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The default configuration of Safari in Apple Mac OS X 10.4 through 10.4.10 adds a private key to the keychain with permissions that allow other applications to access the key without warning the user, which might allow other applications to bypass intended access restrictions.
La configuración por defecto de Safari en Apple Mac OS X 10.4 hasta 10.4.10 añade una clave privada a la cadena de claves con permisos que permiten a otras aplicaciones acceder a la clave sin avisar al usuario, lo cual podría permitir a otras aplicaciones evitar las restricciones de acceso.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-09-05 CVE Reserved
- 2007-11-15 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-26 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://docs.info.apple.com/article.html?artnum=307041 | X_refsource_confirm | |
| http://securitytracker.com/id?1018948 | Vdb Entry | |
| http://www.securityfocus.com/bid/26444 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA07-319A.html | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2007/3868 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/38485 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html | 2017-07-29 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/27643 | 2017-07-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.1 Search vendor "Apple" for product "Mac Os X" and version "10.4.1" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.2 Search vendor "Apple" for product "Mac Os X" and version "10.4.2" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.3 Search vendor "Apple" for product "Mac Os X" and version "10.4.3" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.4 Search vendor "Apple" for product "Mac Os X" and version "10.4.4" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.5 Search vendor "Apple" for product "Mac Os X" and version "10.4.5" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.6 Search vendor "Apple" for product "Mac Os X" and version "10.4.6" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.7 Search vendor "Apple" for product "Mac Os X" and version "10.4.7" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.8 Search vendor "Apple" for product "Mac Os X" and version "10.4.8" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.9 Search vendor "Apple" for product "Mac Os X" and version "10.4.9" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.10 Search vendor "Apple" for product "Mac Os X" and version "10.4.10" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.1 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.1" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.2 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.2" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.3 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.3" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.4 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.4" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.5 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.5" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.6 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.6" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.7 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.7" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.8 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.8" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.9 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.9" | - |
Safe
|
| Apple Search vendor "Apple" | Safari Search vendor "Apple" for product "Safari" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.10 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.10" | - |
Safe
|