Vulnerability Name:

CVE-2006-5328 (CCN-30115)

Assigned:2006-10-16
Published:2006-10-16
Updated:2018-08-13
Summary:OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to create arbitrary files via a symlink attack on the simulation.sql file.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
6.2 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
2.6 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P)
2.3 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:File Manipulation
References:Source: MITRE
Type: CNA
CVE-2006-5328

Source: CCN
Type: Apple Web site
About the security content of Xcode Tools 2.5

Source: APPLE
Type: UNKNOWN
APPLE-SA-2007-10-30

Source: CCN
Type: Apple Product Security Mailing List, Tue, 30 Oct 2007 15:13:10 -0700
APPLE-SA-2007-10-30 Xcode 2.5 Developer Tools

Source: CCN
Type: SA22390
OpenBase SQL Privilege Escalation Vulnerability

Source: SECUNIA
Type: Vendor Advisory
22390

Source: CCN
Type: SA27441
Apple Xcode Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
27441

Source: CCN
Type: SECTRACK ID: 1018872
Apple Xcode Bugs Let Local Users Gain System Privileges

Source: CCN
Type: OpenBase Web site
OpenBase: Engine of Innovation

Source: CCN
Type: DMA[2006-1016a]
Apple Xcode WebObjects / OpenBase SQL multiple vulnerabilities

Source: MISC
Type: Broken Link
http://www.digitalmunition.com/DMA[2006-1016a].txt

Source: MISC
Type: UNKNOWN
http://www.digitalmunition.com/Xcode_OpenBase_createfile.pl

Source: CCN
Type: OSVDB ID: 29794
OpenBase SQL simulation.sql Symlink Local Privilege Escalation

Source: CCN
Type: OSVDB ID: 30235
OpenBase SQL openexec PATH Variable Subversion Local Privilege Escalation

Source: BID
Type: UNKNOWN
20562

Source: CCN
Type: BID-20562
Apple Xcode OpenBase Multiple Privilege Escalation Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1018872

Source: VUPEN
Type: UNKNOWN
ADV-2007-3665

Source: XF
Type: UNKNOWN
openbasesql-simulation-symlink(30115)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:apple:xcode:*:*:*:*:*:*:*:* (Version <= 2.2)
  • OR cpe:/a:openbase_international_ltd:openbase:7.0.15:*:mac_os_x:*:*:*:*:*
  • OR cpe:/a:openbase_international_ltd:openbase:8.0.4:*:mac_os_x:*:*:*:*:*
  • OR cpe:/a:openbase_international_ltd:openbase:9.1.5:*:mac_os_x:*:*:*:*:*
  • OR cpe:/a:openbase_international_ltd:openbase:*:*:mac_os_x:*:*:*:*:* (Version <= 10.0)

    • Configuration CCN 1:
  • cpe:/a:apple:xcode:2.2:*:*:*:*:*:*:*
  • AND
  • cpe:/o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
  • OR cpe:/o:apple:mac_os_x:10.5:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    apple xcode *
    openbase_international_ltd openbase 7.0.15
    openbase_international_ltd openbase 8.0.4
    openbase_international_ltd openbase 9.1.5
    openbase_international_ltd openbase *
    apple xcode 2.2
    apple mac os x 10.4
    apple mac os x 10.5