Sign-up

ID

VAR-201006-0229


CVE

CVE-2010-1376


TITLE

Apple Mac OS X Arbitrary network authentication arbitrary code execution vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2010-001656

DESCRIPTION

Multiple format string vulnerabilities in Network Authorization in Apple Mac OS X 10.6 before 10.6.4 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via format string specifiers in a (1) afp, (2) cifs, or (3) smb URL. The update addresses new vulnerabilities that affect the CUPS, DesktopServices, Folder Manager, Help Viewer, iChat, ImageIO, Network Authorization, Open Directory, Printer Setup, Printing, Ruby, SMB File Server, and Wiki Server components of Mac OS X. The advisory also contains security updates for 13 previously reported issues. This BID is being retired. Apple Mac OS X is prone to a remote format-string vulnerability. This issue affects the Network Authorization component. Successful exploits may allow an attacker to execute arbitrary code in the context of the user running the affected application or to obtain sensitive information. Failed attacks will result in denial-of-service conditions. This issue affects Mac OS X 10.6 through 10.6.3 and Mac OS X Server 10.6 through 10.6.3. NOTE: This issue was previously covered in BID 40871 (Apple Mac OS X Prior to 10.6.4 Multiple Security Vulnerabilities), but has been given its own record to better document it

Trust: 2.25

sources: NVD: CVE-2010-1376 // JVNDB: JVNDB-2010-001656 // BID: 40871 // BID: 40902 // VULHUB: VHN-43981

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.6.3

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.6.2

Trust: 1.6

vendor:applemodel:mac os x serverscope:eqversion:10.6.2

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.6.1

Trust: 1.6

vendor:applemodel:mac os x serverscope:eqversion:10.6.3

Trust: 1.6

vendor:applemodel:mac os x serverscope:eqversion:10.6.1

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.6.0

Trust: 1.6

vendor:applemodel:mac os x serverscope:eqversion:10.6.0

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:v10.6 to v10.6.3

Trust: 0.8

vendor:applemodel:mac os x serverscope:eqversion:v10.6 to v10.6.3

Trust: 0.8

vendor:applemodel:mac os serverscope:eqversion:x10.6.3

Trust: 0.6

vendor:applemodel:mac os serverscope:eqversion:x10.6.2

Trust: 0.6

vendor:applemodel:mac os serverscope:eqversion:x10.6.1

Trust: 0.6

vendor:applemodel:mac os serverscope:eqversion:x10.6

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.6.3

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.6.2

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.6.1

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.6

Trust: 0.6

vendor:applemodel:mac os serverscope:neversion:x10.6.4

Trust: 0.6

vendor:applemodel:mac osscope:neversion:x10.6.4

Trust: 0.6

vendor:applemodel:mac os serverscope:eqversion:x10.5.8

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5.7

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5.6

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5.5

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5.4

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5.3

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5.2

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5.1

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.5

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.8

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.7

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.6

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.5

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.4

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.3

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.2

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.5

Trust: 0.3

sources: BID: 40871 // BID: 40902 // JVNDB: JVNDB-2010-001656 // CNNVD: CNNVD-201006-288 // NVD: CVE-2010-1376

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2010-1376
value: MEDIUM

Trust: 1.0

NVD: CVE-2010-1376
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201006-288
value: MEDIUM

Trust: 0.6

VULHUB: VHN-43981
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2010-1376
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-43981
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-43981 // JVNDB: JVNDB-2010-001656 // CNNVD: CNNVD-201006-288 // NVD: CVE-2010-1376

PROBLEMTYPE DATA

problemtype:CWE-134

Trust: 1.8

sources: JVNDB: JVNDB-2010-001656 // NVD: CVE-2010-1376

THREAT TYPE

network

Trust: 0.6

sources: BID: 40871 // BID: 40902

TYPE

format string

Trust: 0.6

sources: CNNVD: CNNVD-201006-288

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2010-001656

PATCH
title:HT4188url:http://support.apple.com/kb/HT4188
Trust: 0.8
title:HT4188url:http://support.apple.com/kb/HT4188?viewlocale=ja_JP
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2010-001656

EXTERNAL IDS
db:NVDid:CVE-2010-1376
Trust: 2.8
db:VUPENid:ADV-2010-1481
Trust: 2.5
db:SECUNIAid:40220
Trust: 2.5
db:SECTRACKid:1024103
Trust: 2.5
db:BIDid:40871
Trust: 2.0
db:JVNDBid:JVNDB-2010-001656
Trust: 0.8
db:CNNVDid:CNNVD-201006-288
Trust: 0.7
db:APPLEid:APPLE-SA-2010-06-15-1
Trust: 0.6
db:BIDid:40902
Trust: 0.4
db:VULHUBid:VHN-43981
Trust: 0.1
sources:
            
            
            VULHUB: VHN-43981 // 
            
            
            
            BID: 40871 // 
            
            
            
            BID: 40902 // 
            
            
            
            JVNDB: JVNDB-2010-001656 // 
            
            
            
            CNNVD: CNNVD-201006-288 // 
            
            
            
            NVD: CVE-2010-1376

REFERENCES
url:http://securitytracker.com/id?1024103
Trust: 2.5
url:http://secunia.com/advisories/40220
Trust: 2.5
url:http://www.vupen.com/english/advisories/2010/1481
Trust: 2.5
url:http://lists.apple.com/archives/security-announce/2010//jun/msg00001.html
Trust: 1.7
url:http://www.securityfocus.com/bid/40871
Trust: 1.7
url:http://support.apple.com/kb/ht4188
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1376
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-1376
Trust: 0.8
url:http://www.apple.com/macosx/
Trust: 0.6
sources:
            
            
            VULHUB: VHN-43981 // 
            
            
            
            BID: 40871 // 
            
            
            
            BID: 40902 // 
            
            
            
            JVNDB: JVNDB-2010-001656 // 
            
            
            
            CNNVD: CNNVD-201006-288 // 
            
            
            
            NVD: CVE-2010-1376

CREDITS
Apple; Adrian 'pagvac' Pastor of GNUCITIZEN, and Tim Starling; Tim Waugh; Luca Carettoni; Michi Ruepp of pianobakery.com; Clint Ruoho of Laconic Security; Kevin Finisterre of digitalmunition.com; MIT Kerberos Team; Joel Johnson, Debian, Brian Almeida; Emm
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201006-288

SOURCES
db:VULHUBid:VHN-43981
db:BIDid:40871
db:BIDid:40902
db:JVNDBid:JVNDB-2010-001656
db:CNNVDid:CNNVD-201006-288
db:NVDid:CVE-2010-1376

LAST UPDATE DATE
2025-04-11T22:18:58.820000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-43981date:2010-06-18T00:00:00
db:BIDid:40871date:2010-06-16T21:59:00
db:BIDid:40902date:2010-06-15T00:00:00
db:JVNDBid:JVNDB-2010-001656date:2010-07-09T00:00:00
db:CNNVDid:CNNVD-201006-288date:2010-06-21T00:00:00
db:NVDid:CVE-2010-1376date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:VULHUBid:VHN-43981date:2010-06-17T00:00:00
db:BIDid:40871date:2010-06-15T00:00:00
db:BIDid:40902date:2010-06-15T00:00:00
db:JVNDBid:JVNDB-2010-001656date:2010-07-09T00:00:00
db:CNNVDid:CNNVD-201006-288date:2010-06-21T00:00:00
db:NVDid:CVE-2010-1376date:2010-06-17T16:30:01.607