CVE-2005-2516

Published: Aug 19, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text Format (RTF) files, can directly access URLs without performing the normal security checks, which allows remote attackers to execute arbitrary commands.

Affected (3)

Products: Apple: Safari, Mac Os X

Apple

2 products

Safari

Mac Os X

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Safari	All versions

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Version 10.3.9
Apple Mac Os X	Version 10.4.2

References (8)

http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html

Source: cve@mitre.org

PatchVendor Advisory

http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.kb.cert.org/vuls/id/709220

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://www.us-cert.gov/cas/techalerts/TA05-229A.html

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.kb.cert.org/vuls/id/709220

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party AdvisoryUS Government Resource

http://www.us-cert.gov/cas/techalerts/TA05-229A.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party AdvisoryUS Government Resource

Timeline

No history available yet.