CVE-2006-1444

low

Description

CoreGraphics in Apple Mac OS X 10.4.6, when "Enable access for assistive devices" is on, allows an application to bypass restrictions for secure event input and read certain events from other applications in the same window session by using Quartz Event Services.

References

http://lists.apple.com/archives/security-announce/2006/May/msg00003.html

http://secunia.com/advisories/20077

http://securitytracker.com/id?1016079

http://www.osvdb.org/25588

http://www.securityfocus.com/bid/17951

http://www.us-cert.gov/cas/techalerts/TA06-132A.html

http://www.vupen.com/english/advisories/2006/1779

https://exchange.xforce.ibmcloud.com/vulnerabilities/26409

Details

Source: MITRE

Published: 2006-05-12

Updated: 2017-07-20

Risk Information

CVSS v2

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW