CVE-2006-1447 - CVE Reference - Advisories

CVE Reference: CVE-2006-1447

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1447

Description: LaunchServices in Apple Mac OS X 10.4.6 allows remote attackers to cause Safari to launch unsafe content via long file name extensions, which prevents Download Validation from determining which application will be used to open the file.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26416 ST 1016081 SAID Secunia Advisory: SA20077 OSVDB 25591 CERT http://www.us-cert.gov/cas/techalerts/TA06-132A.html BID 17951 APPLE http://lists.apple.com/archives/security-announce/2006/May/msg00003.html

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	dotProject SQL Injection and Cross-Site Scripting

2.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

3.	Sun Solaris Kernel Covert Channel Security Bypass

4.	Novell eDirectory Multiple Vulnerabilities

5.	Slackware update for amarok

6.	Adium MSN SLP Message Integer Overflow Vulnerabilities

7.	Blogn Cross-Site Scripting and Cross-Site Request Forgery

8.	PluggedOut Blog "index.php" SQL Injection Vulnerabilities

9.	Acoustica Mixcraft ".mx4" File Processing Buffer Overflow

10.	Caudium "configvar" Insecure Temporary Files