CVE-2010-1374

Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, when AIM is used, allows remote attackers to create arbitrary files via directory traversal sequences in an inline image-transfer operation.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*
OR cpe:2.3:a:aol:aim:4.7:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:5.9:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:4.2:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:3.5:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:1.06:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:5.5:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:5.1:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:2.0:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:4.3:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:4.1:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:6.0:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:1.0:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:4.4:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:6.8:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:5.2:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:6.2:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:5.0:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:2.1:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:6.5:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:3.0:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:1.7:*:*:*:*:*:*:*
cpe:2.3:a:aol:aim:4.8:*:*:*:*:*:*:*

Information

Published : 2010-06-17 09:30

Updated : 2010-06-17 09:30


NVD link : CVE-2010-1374

Mitre link : CVE-2010-1374


JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa

Products Affected

apple

  • mac_os_x
  • mac_os_x_server

aol

  • aim