| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.6 | $0-$5k | 0.00 |
Summary
A vulnerability identified as critical has been detected in Apple Mac OS X up to 10.4.1. This impacts an unknown function of the component AFP Server. This manipulation causes security check. The identification of this vulnerability is CVE-2005-1726. It is possible to initiate the attack remotely. There is no exploit available. Applying a patch is the recommended action to fix this issue.
Details
A vulnerability classified as critical was found in Apple Mac OS X up to 10.4.1 (Operating System). Affected by this vulnerability is some unknown functionality of the component AFP Server. The manipulation with an unknown input leads to a security check vulnerability. The CWE definition for the vulnerability is CWE-358. The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
The CoreGraphics Window Server in Mac OS X 10.4.1 allows local users with console access to gain privileges by "launching commands into root sessions."
The bug was discovered 06/08/2005. The weakness was shared 06/09/2005 by Ilja van Sprundel with Apple (Website). The advisory is shared at docs.info.apple.com. This vulnerability is known as CVE-2005-1726 since 05/24/2005. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Neither technical details nor an exploit are publicly available. MITRE ATT&CK project uses the attack technique T1211 for this issue.
It is declared as proof-of-concept. The vulnerability scanner Nessus provides a plugin with the ID 18437 (Mac OS X Multiple Vulnerabilities (Security Update 2005-006)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family MacOS X Local Security Checks and running in the context l. The commercial vulnerability scanner Qualys is able to test this issue with plugin 115260 (Apple Mac OS X Security Update 2005-006 Not Installed (APPLE-SA-2005-06-08)).
Applying a patch is able to eliminate this problem. The bugfix is ready for download at apple.com. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (20954), Tenable (18437), SecurityFocus (BID 13899†), OSVDB (17266†) and Secunia (SA15481†). The entries VDB-1320, VDB-1318, VDB-1319 and VDB-1554 are related to this item. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Product
Type
Vendor
Name
Version
License
Support
Website
- Vendor: https://www.apple.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 6.6
VulDB Base Score: 7.3
VulDB Temp Score: 6.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Security checkCWE: CWE-358
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: Yes
Availability: 🔍
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 18437
Nessus Name: Mac OS X Multiple Vulnerabilities (Security Update 2005-006)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: apple.com
Timeline
05/24/2005 🔍06/08/2005 🔍
06/08/2005 🔍
06/08/2005 🔍
06/08/2005 🔍
06/09/2005 🔍
06/09/2005 🔍
06/09/2005 🔍
06/09/2005 🔍
06/12/2005 🔍
06/14/2005 🔍
12/31/2005 🔍
02/22/2007 🔍
07/03/2019 🔍
Sources
Vendor: apple.comAdvisory: docs.info.apple.com⛔
Researcher: Ilja van Sprundel
Organization: Apple
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2005-1726 (🔍)
GCVE (CVE): GCVE-0-2005-1726
GCVE (VulDB): GCVE-100-1549
X-Force: 20954 - Apple CoreGraphics allows root privileges, High Risk
SecurityFocus: 13899 - Apple Mac OS X Security Update 2005-006 Multiple Vulnerabilities
Secunia: 15481 - Mac OS X Security Update Fixes Multiple Vulnerabilities, Highly Critical
OSVDB: 17266 - Apple Mac OS X CoreGraphics Window Server Privilege Escalation
SecurityTracker: 1014144
Vulnerability Center: 14347 - Mac OS X CoreGraphics Window Server Privilege Escalation, Medium
Vupen: ADV-2005-0712
scip Labs: https://www.scip.ch/en/?labs.20150108
See also: 🔍
Entry
Created: 06/14/2005 12:58Updated: 07/03/2019 11:58
Changes: 06/14/2005 12:58 (90), 07/03/2019 11:58 (8)
Complete: 🔍
Cache ID: 216:DC7:103
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
No comments yet. Languages: en.
Please log in to comment.