Vulnerability Name:

CVE-2004-0485 (CCN-16166)

Assigned:2004-05-17
Published:2004-05-17
Updated:2017-07-11
Summary:The default protocol helper for the disk: URI on Mac OS X 10.3.3 and 10.2.8 allows remote attackers to write arbitrary files by causing a disk image file (.dmg) to be mounted as a disk volume.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Mon May 17 2004 - 09:05:11 CDT
Safari remote arbitrary code execution

Source: CCN
Type: Full-Disclosure Mailing List, Sun May 16 2004 - 06:37:29 CDT
Vuln. MacOSX/Safari: Remote help-call, execute scripts

Source: MITRE
Type: CNA
CVE-2004-0485

Source: CCN
Type: AppleCare Knowledge Base Document 61798
Apple Security Update 2004-05-03

Source: MISC
Type: Vendor Advisory
http://fundisom.com/owned/warning

Source: APPLE
Type: UNKNOWN
APPLE-SA-2004-05-21

Source: APPLE
Type: UNKNOWN
APPLE-SA-2004-05-28

Source: CCN
Type: SA11622
Mac OS X URI Handler Arbitrary Code Execution

Source: SECUNIA
Type: Patch, Vendor Advisory
11622

Source: CCN
Type: Apple Web site
Apple - Mac OS X

Source: CCN
Type: CIAC Information Bulletin O-151
Apple Mac OS X Help Viewer Vulnerability

Source: CCN
Type: US-CERT VU#210606
Apple Mac OS X disk:// URI handler stores arbitrary files in a known location

Source: CERT-VN
Type: Patch, Third Party Advisory, US Government Resource
VU#210606

Source: CCN
Type: OSVDB ID: 6536
Apple Mac OS X Disk URI Handler Arbitrary File Creation

Source: CCN
Type: BID-10400
Apple OS X Unspecified Terminal URL Handling Vulnerability

Source: XF
Type: UNKNOWN
macos-helper-file-manipulation(16166)

Source: XF
Type: UNKNOWN
macos-runscript-code-execution(16166)

Vulnerable Configuration:Configuration 1:
  • cpe:/o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    apple mac os x 10.2.8
    apple mac os x 10.3.3
    apple mac os x 10.2.8
    apple mac os x 10.3.3