CVE-2005-3702

MEDIUM

Description

Safari in Mac OS X and OS X Server 10.3.9 and 10.4.3 allows remote attackers to cause files to be downloaded to locations outside the download directory via a long file name.

References

http://docs.info.apple.com/article.html?artnum=302847

http://secunia.com/advisories/17813

http://securitytracker.com/id?1015294

http://www.securityfocus.com/bid/15647

http://www.vupen.com/english/advisories/2005/2659

Details

Source: MITRE

Published: 2005-12-01

Updated: 2011-03-08

Risk Information

CVSS v2.0

Base Score: 5

Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N)

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM