VAR-200506-0135
Vulnerability from variot - Updated: 2025-04-03 22:10Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install widgets via Safari without prompting the user, a different vulnerability than CVE-2005-1933. This issue is due to Safari improperly considering Dashboard widgets to be "safe" content. It is demonstrated that an attacker can cause Safari to automatically download, and then install widgets into the users '~/Library/Widgets' directory. This happens without user intervention or notification. Reportedly, once widgets have been automatically installed via Safari, the normal validation required for widgets to gain access to system resources is skipped, allowing complete system access to the malicious widgets, however, this has not been confirmed by Symantec. This will likely result in malicious script, or machine code being executed in the context of the targeted user. Mac OS X version 10.4 is vulnerable to this issue
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200506-0135",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "mac os x server",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4.1"
},
{
"model": "mac os x",
"scope": "eq",
"trust": 1.6,
"vendor": "apple",
"version": "10.4"
},
{
"model": null,
"scope": null,
"trust": 0.8,
"vendor": "apple computer",
"version": null
},
{
"model": "mac os server",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4"
},
{
"model": "mac os",
"scope": "eq",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4"
},
{
"model": "mac os server",
"scope": "ne",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.1"
},
{
"model": "mac os",
"scope": "ne",
"trust": 0.3,
"vendor": "apple",
"version": "x10.4.1"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#775661"
},
{
"db": "BID",
"id": "13694"
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
},
{
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Stephan Meyers is credited with the discovery of this issue.",
"sources": [
{
"db": "BID",
"id": "13694"
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
}
],
"trust": 0.9
},
"cve": "CVE-2005-1474",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2005-1474",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 1.0,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-12683",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2005-1474",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CARNEGIE MELLON",
"id": "VU#775661",
"trust": 0.8,
"value": "17.06"
},
{
"author": "CNNVD",
"id": "CNNVD-200506-115",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-12683",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#775661"
},
{
"db": "VULHUB",
"id": "VHN-12683"
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
},
{
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install widgets via Safari without prompting the user, a different vulnerability than CVE-2005-1933. This issue is due to Safari improperly considering Dashboard widgets to be \"safe\" content. \nIt is demonstrated that an attacker can cause Safari to automatically download, and then install widgets into the users \u0027~/Library/Widgets\u0027 directory. This happens without user intervention or notification. \nReportedly, once widgets have been automatically installed via Safari, the normal validation required for widgets to gain access to system resources is skipped, allowing complete system access to the malicious widgets, however, this has not been confirmed by Symantec. This will likely result in malicious script, or machine code being executed in the context of the targeted user. \nMac OS X version 10.4 is vulnerable to this issue",
"sources": [
{
"db": "NVD",
"id": "CVE-2005-1474"
},
{
"db": "CERT/CC",
"id": "VU#775661"
},
{
"db": "BID",
"id": "13694"
},
{
"db": "VULHUB",
"id": "VHN-12683"
}
],
"trust": 1.98
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "BID",
"id": "13694",
"trust": 2.8
},
{
"db": "NVD",
"id": "CVE-2005-1474",
"trust": 2.0
},
{
"db": "SECTRACK",
"id": "1014012",
"trust": 0.8
},
{
"db": "CERT/CC",
"id": "VU#775661",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115",
"trust": 0.7
},
{
"db": "APPLE",
"id": "APPLE-SA-2005-05-19",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-12683",
"trust": 0.1
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#775661"
},
{
"db": "VULHUB",
"id": "VHN-12683"
},
{
"db": "BID",
"id": "13694"
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
},
{
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"id": "VAR-200506-0135",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-12683"
}
],
"trust": 0.01
},
"last_update_date": "2025-04-03T22:10:57.650000Z",
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.5,
"url": "http://www.securityfocus.com/bid/13694"
},
{
"trust": 1.7,
"url": "http://lists.apple.com/archives/security-announce/2005/may/msg00004.html"
},
{
"trust": 0.8,
"url": "http://www.macworld.com/news/2005/05/09/dashboard/"
},
{
"trust": 0.8,
"url": "http://www.macworld.co.uk/news/index.cfm?home\u0026newsid=11531"
},
{
"trust": 0.8,
"url": "http://www1.cs.columbia.edu/~aaron/files/widgets/"
},
{
"trust": 0.8,
"url": "http://developer.apple.com/documentation/appleapplications/conceptual/dashboard_tutorial/index.html"
},
{
"trust": 0.8,
"url": "[\u003ca href=\"http://developer.apple.com/documentation/appleapplications/conceptual/dashboard_tutorial/security/chapter_10_section_1.html#//apple_ref/doc/uid/tp40001340-ch210-tpxref101\"\u003ehttp://developer.apple.com/documentation/appleapplications/conceptual/dashboard_tutorial/ security/chapter_10_section_1.html#//apple_ref/doc/uid/tp40001340-ch210-tpxref101\u003c/a\u003e]"
},
{
"trust": 0.8,
"url": "http://www.apple.com/macosx/features/dashboard/"
},
{
"trust": 0.8,
"url": "http://www.appleinsider.com/article.php?id=1073"
},
{
"trust": 0.8,
"url": "http://securitytracker.com/alerts/2005/may/1014012.html"
},
{
"trust": 0.8,
"url": "http://docs.info.apple.com/article.html?artnum=301630"
},
{
"trust": 0.3,
"url": "http://www.info.apple.com/usen/security/security_updates.html"
},
{
"trust": 0.3,
"url": "http://www.apple.com/macosx/"
},
{
"trust": 0.3,
"url": "http://docs.info.apple.com/article.html?artnum=301629"
}
],
"sources": [
{
"db": "CERT/CC",
"id": "VU#775661"
},
{
"db": "VULHUB",
"id": "VHN-12683"
},
{
"db": "BID",
"id": "13694"
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
},
{
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CERT/CC",
"id": "VU#775661"
},
{
"db": "VULHUB",
"id": "VHN-12683"
},
{
"db": "BID",
"id": "13694"
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
},
{
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2005-06-08T00:00:00",
"db": "CERT/CC",
"id": "VU#775661"
},
{
"date": "2005-06-13T00:00:00",
"db": "VULHUB",
"id": "VHN-12683"
},
{
"date": "2005-05-20T00:00:00",
"db": "BID",
"id": "13694"
},
{
"date": "2005-06-13T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200506-115"
},
{
"date": "2005-06-13T04:00:00",
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2006-02-22T00:00:00",
"db": "CERT/CC",
"id": "VU#775661"
},
{
"date": "2008-09-05T00:00:00",
"db": "VULHUB",
"id": "VHN-12683"
},
{
"date": "2009-07-12T14:56:00",
"db": "BID",
"id": "13694"
},
{
"date": "2005-10-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200506-115"
},
{
"date": "2025-04-03T01:03:51.193000",
"db": "NVD",
"id": "CVE-2005-1474"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Apple Safari automatically installs Dashboard widgets",
"sources": [
{
"db": "CERT/CC",
"id": "VU#775661"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Design Error",
"sources": [
{
"db": "BID",
"id": "13694"
},
{
"db": "CNNVD",
"id": "CNNVD-200506-115"
}
],
"trust": 0.9
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…