Описание
Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to (1) execute arbitrary code via the ProxyCommand option or (2) conduct port forwarding via the -R option.
Ссылки
- Broken Link
- ExploitVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken Link
- ExploitVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 10.3.3 (включая)
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.14294
Средний
7.6 High
CVSS2
Дефекты
CWE-88
Связанные уязвимости
github
больше 3 лет назад
Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to (1) execute arbitrary code via the ProxyCommand option or (2) conduct port forwarding via the -R option.
EPSS
Процентиль: 94%
0.14294
Средний
7.6 High
CVSS2
Дефекты
CWE-88