Vulnerability Details : CVE-2007-5857
Quick Look in Apple Mac OS X 10.5.1 does not prevent a movie from accessing URLs when the movie file is previewed or if an icon is created, which might allow remote attackers to obtain sensitive information via HREFTrack.
Exploit prediction scoring system (EPSS) score for CVE-2007-5857
Probability of exploitation activity in the next 30 days: 0.74%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 80 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-5857
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:P/A:N |
10.0
|
4.9
|
NIST |
CWE ids for CVE-2007-5857
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-5857
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/39106
-
http://www.vupen.com/english/advisories/2007/4238
Webmail: access your OVH emails on ovhcloud.com | OVHcloud
- http://docs.info.apple.com/article.html?artnum=307179
-
http://www.us-cert.gov/cas/techalerts/TA07-352A.html
Page Not Found | CISAUS Government Resource
- http://securitytracker.com/id?1019106
- http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html
- http://www.securityfocus.com/bid/26910
Products affected by CVE-2007-5857
- cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*