Executive Summary

Informations
Name CVE-2006-3495 First vendor Publication 2006-08-02
Vendor Cve Last vendor Modification 2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score 2.1 Attack Range Local
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

AFP Server in Apple Mac OS X 10.3.9 and 10.4.7 stores reconnect keys in a world-readable file, which allows local users to obtain the keys and access files and folders of other users.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3495

CPE : Common Platform Enumeration

TypeDescriptionCount
Os 2
Os 2

OpenVAS Exploits

Date Description
2009-11-17 Name : Mac OS X Version
File : nvt/macosx_version.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
27732 Apple Mac OS X Server AFP Server Reconnect Key Disclosure

Mac OS X Server contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the AFP server stores client reconnect keys as world-readable files, which will disclose client session information resulting in a loss of confidentiality.

Nessus® Vulnerability Scanner

Date Description
2006-08-01 Name : The remote operating system is missing a vendor-supplied patch.
File : macosx_SecUpd2006-004.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html
http://secunia.com/advisories/21253
http://securitytracker.com/id?1016620
http://www.kb.cert.org/vuls/id/168020
http://www.osvdb.org/27732
http://www.securityfocus.com/bid/19289
http://www.us-cert.gov/cas/techalerts/TA06-214A.html
http://www.vupen.com/english/advisories/2006/3101
https://exchange.xforce.ibmcloud.com/vulnerabilities/28136
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
Date Informations
2024-11-28 23:19:53
  • Multiple Updates
2024-11-28 12:09:27
  • Multiple Updates
2021-05-04 12:04:17
  • Multiple Updates
2021-04-22 01:04:55
  • Multiple Updates
2020-05-23 00:18:04
  • Multiple Updates
2017-07-20 09:23:44
  • Multiple Updates
2016-06-28 15:52:03
  • Multiple Updates
2016-04-26 14:50:26
  • Multiple Updates
2014-02-17 10:36:24
  • Multiple Updates
2013-05-11 11:02:55
  • Multiple Updates