Executive Summary

Informations
NameCVE-2004-1084First vendor Publication2004-12-02
VendorCveLast vendor Modification2017-07-10

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1084

CWE : Common Weakness Enumeration

%idName

CPE : Common Platform Enumeration

TypeDescriptionCount
Application2
Application1
Os16
Os16

OpenVAS Exploits

DateDescription
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
12193Apache HTTP Server on Mac OS X File Handler Bypass

Nessus® Vulnerability Scanner

DateDescription
2005-08-18Name : The remote host is missing a Mac OS X update that fixes various security issues.
File : macosx_SecUpd2005-007.nasl - Type : ACT_GATHER_INFO
2004-12-09Name : The remote web server is affected by an information disclosure vulnerability.
File : hfs_fork_source.nasl - Type : ACT_GATHER_INFO
2004-12-02Name : The remote host is missing a Mac OS X update that fixes a security issue.
File : macosx_SecUpd20041202.nasl - Type : ACT_GATHER_INFO
2004-07-06Name : The remote host is using an unsupported version of Mac OS X.
File : macosx_version.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
APPLE http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
BID http://www.securityfocus.com/bid/11802
CIAC http://www.ciac.org/ciac/bulletins/p-049.shtml
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/18349

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2017-07-11 12:01:33
  • Multiple Updates
2016-04-26 12:55:35
  • Multiple Updates
2014-02-17 10:28:24
  • Multiple Updates
2013-05-11 11:43:48
  • Multiple Updates