CVE Vulnerabilities

CVE-2010-0497

Published: Mar 30, 2010 | Modified: Mar 31, 2010
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Disk Images in Apple Mac OS X before 10.6.3 does not provide the expected warning for an unsafe file type in an internet enabled disk image, which makes it easier for user-assisted remote attackers to execute arbitrary code via a package file type.

Affected Software

Name Vendor Start Version End Version
Mac_os_x Apple * 10.6.2 (including)
Mac_os_x Apple 10.5 (including) 10.5 (including)
Mac_os_x Apple 10.5.0 (including) 10.5.0 (including)
Mac_os_x Apple 10.5.1 (including) 10.5.1 (including)
Mac_os_x Apple 10.5.2 (including) 10.5.2 (including)
Mac_os_x Apple 10.5.3 (including) 10.5.3 (including)
Mac_os_x Apple 10.5.4 (including) 10.5.4 (including)
Mac_os_x Apple 10.5.5 (including) 10.5.5 (including)
Mac_os_x Apple 10.5.6 (including) 10.5.6 (including)
Mac_os_x Apple 10.5.7 (including) 10.5.7 (including)
Mac_os_x Apple 10.5.8 (including) 10.5.8 (including)
Mac_os_x Apple 10.6.0 (including) 10.6.0 (including)
Mac_os_x Apple 10.6.1 (including) 10.6.1 (including)
Mac_os_x_server Apple * 10.6.2 (including)
Mac_os_x_server Apple 10.5 (including) 10.5 (including)
Mac_os_x_server Apple 10.5.0 (including) 10.5.0 (including)
Mac_os_x_server Apple 10.5.1 (including) 10.5.1 (including)
Mac_os_x_server Apple 10.5.2 (including) 10.5.2 (including)
Mac_os_x_server Apple 10.5.3 (including) 10.5.3 (including)
Mac_os_x_server Apple 10.5.4 (including) 10.5.4 (including)
Mac_os_x_server Apple 10.5.5 (including) 10.5.5 (including)
Mac_os_x_server Apple 10.5.6 (including) 10.5.6 (including)
Mac_os_x_server Apple 10.5.7 (including) 10.5.7 (including)
Mac_os_x_server Apple 10.5.8 (including) 10.5.8 (including)
Mac_os_x_server Apple 10.6.0 (including) 10.6.0 (including)
Mac_os_x_server Apple 10.6.1 (including) 10.6.1 (including)

References