Описание
iChat in Apple Mac OS X 10.5 before 10.5.7 disables SSL for AOL Instant Messenger (AIM) communication in certain circumstances that are inconsistent with the Require SSL setting, which allows remote attackers to obtain sensitive information by sniffing the network.
Ссылки
- Mailing ListPatchVendor Advisory
- Broken Link
- PatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryVDB Entry
- Mailing ListPatchVendor Advisory
- Broken Link
- PatchVendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 10.5.0 (включая) до 10.5.7 (исключая)Версия от 10.5.0 (включая) до 10.5.7 (исключая)
Одно из
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00694
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
iChat in Apple Mac OS X 10.5 before 10.5.7 disables SSL for AOL Instant Messenger (AIM) communication in certain circumstances that are inconsistent with the Require SSL setting, which allows remote attackers to obtain sensitive information by sniffing the network.
EPSS
Процентиль: 71%
0.00694
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-312