CVE-2004-0486 - Vulnerability Details - OpenCVE

HelpViewer in Mac OS X 10.3.3 and 10.2.8 processes scripts that it did not initiate, which can allow attackers to execute arbitrary code, an issue that was originally reported as a directory traversal vulnerability in the Safari web browser using the runscript parameter in a help: URI handler.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Apple	Mac Os X Mac Os X Server

Configuration 1 [-]

OR	cpe:2.3:o:apple:mac_os_x:10.3:::::::*
	cpe:2.3:o:apple:mac_os_x:10.3.1:::::::*
	cpe:2.3:o:apple:mac_os_x:10.3.2:::::::*
	cpe:2.3:o:apple:mac_os_x:10.3.3:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.3:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.3.1:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.3.2:::::::*
	cpe:2.3:o:apple:mac_os_x_server:10.3.3:::::::*

No data.

References

Link	Providers
http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0837.html
http://lists.apple.com/mhonarc/security-announce/msg00053.html
http://secunia.com/advisories/11622/
http://securitytracker.com/id?1010167
http://www.fundisom.com/owned/warning
http://www.kb.cert.org/vuls/id/578798
http://www.osvdb.org/6184
http://www.securityfocus.com/bid/10356
https://exchange.xforce.ibmcloud.com/vulnerabilities/16166

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-05-28T04:00:00

Updated: 2024-08-08T00:17:15.160Z

Reserved: 2004-05-20T00:00:00

Link: CVE-2004-0486

Vulnrichment

No data.

NVD

Status : Modified

Published: 2004-07-07T04:00:00.000

Modified: 2024-11-20T23:48:41.630

Link: CVE-2004-0486

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-05-21T00:00:00", "descriptions": [{"lang": "en", "value": "HelpViewer in Mac OS X 10.3.3 and 10.2.8 processes scripts that it did not initiate, which can allow attackers to execute arbitrary code, an issue that was originally reported as a directory traversal vulnerability in the Safari web browser using the runscript parameter in a help: URI handler."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "VU#578798", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/578798"}, {"name": "11622", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/11622/"}, {"name": "APPLE-SA-2004-05-21", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/mhonarc/security-announce/msg00053.html"}, {"name": "10356", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/10356"}, {"name": "6184", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/6184"}, {"name": "20040516 Vuln. MacOSX/Safari: Remote help-call, execute scripts", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0837.html"}, {"tags": ["x_refsource_MISC"], "url": "http://www.fundisom.com/owned/warning"}, {"name": "macos-runscript-code-execution(16166)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16166"}, {"name": "1010167", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1010167"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0486", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "HelpViewer in Mac OS X 10.3.3 and 10.2.8 processes scripts that it did not initiate, which can allow attackers to execute arbitrary code, an issue that was originally reported as a directory traversal vulnerability in the Safari web browser using the runscript parameter in a help: URI handler."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "VU#578798", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/578798"}, {"name": "11622", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/11622/"}, {"name": "APPLE-SA-2004-05-21", "refsource": "APPLE", "url": "http://lists.apple.com/mhonarc/security-announce/msg00053.html"}, {"name": "10356", "refsource": "BID", "url": "http://www.securityfocus.com/bid/10356"}, {"name": "6184", "refsource": "OSVDB", "url": "http://www.osvdb.org/6184"}, {"name": "20040516 Vuln. MacOSX/Safari: Remote help-call, execute scripts", "refsource": "FULLDISC", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0837.html"}, {"name": "http://www.fundisom.com/owned/warning", "refsource": "MISC", "url": "http://www.fundisom.com/owned/warning"}, {"name": "macos-runscript-code-execution(16166)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16166"}, {"name": "1010167", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1010167"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T00:17:15.160Z"}, "title": "CVE Program Container", "references": [{"name": "VU#578798", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/578798"}, {"name": "11622", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/11622/"}, {"name": "APPLE-SA-2004-05-21", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://lists.apple.com/mhonarc/security-announce/msg00053.html"}, {"name": "10356", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/10356"}, {"name": "6184", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/6184"}, {"name": "20040516 Vuln. MacOSX/Safari: Remote help-call, execute scripts", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0837.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.fundisom.com/owned/warning"}, {"name": "macos-runscript-code-execution(16166)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16166"}, {"name": "1010167", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1010167"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-0486", "datePublished": "2004-05-28T04:00:00", "dateReserved": "2004-05-20T00:00:00", "dateUpdated": "2024-08-08T00:17:15.160Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:10.3:*:*:*:*:*:*:*", "matchCriteriaId": "BFDADE04-29F0-446B-824B-0518880CF0A0", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "ED9BE602-A740-4CF7-9CAF-59061B16AB31", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "33E698C1-C313-40E6-BAF9-7C8F9CF02484", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "BF2D00AC-FA2A-4C39-B796-DC19072862CF", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.3:*:*:*:*:*:*:*", "matchCriteriaId": "1E997653-C744-4F1F-9948-47579AB3BED3", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "DF5A416A-F198-4B9C-8221-D36CC8A7FE5C", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "384C130F-D1A9-4482-AF20-FC81933473A3", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "E8BCD1C5-1AFC-4287-9AFD-81FB3F4F9E54", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "HelpViewer in Mac OS X 10.3.3 and 10.2.8 processes scripts that it did not initiate, which can allow attackers to execute arbitrary code, an issue that was originally reported as a directory traversal vulnerability in the Safari web browser using the runscript parameter in a help: URI handler."}, {"lang": "es", "value": "HelpViewer en Mac OS X 10.3.3 y 10.2.8 procesa scripts que no inici\u00f3, lo que puede permitir a atacantes ejecuatar c\u00f3digo de su elecci\u00f3n, un problema que fue reportado originalmente como una vulnerabilidad de atravesamiento de directorios en el navegador web Safari usanto el manejador de URI help:"}], "id": "CVE-2004-0486", "lastModified": "2024-11-20T23:48:41.630", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2004-07-07T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0837.html"}, {"source": "cve@mitre.org", "url": "http://lists.apple.com/mhonarc/security-announce/msg00053.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/11622/"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1010167"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.fundisom.com/owned/warning"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/578798"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/6184"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/10356"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16166"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0837.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.apple.com/mhonarc/security-announce/msg00053.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/11622/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1010167"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.fundisom.com/owned/warning"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/578798"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/6184"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/10356"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16166"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}