CVE-2005-3704

MEDIUM

Description

System log server in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to spoof syslog messages in log files by injecting various control characters such as newline (NL).

References

http://docs.info.apple.com/article.html?artnum=302847

http://secunia.com/advisories/17813

http://securitytracker.com/id?1015293

http://www.osvdb.org/21277

http://www.securityfocus.com/bid/15647

http://www.vupen.com/english/advisories/2005/2659

https://exchange.xforce.ibmcloud.com/vulnerabilities/23344

Details

Source: MITRE

Published: 2005-12-01

Updated: 2017-07-11

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM