CVE-2006-3504
Description
The Download Validation in LaunchServices for Apple Mac OS X 10.4.7 can identify certain HTML as safe, which could allow attackers to execute Javascript code in local context when the Open safe files after downloading option is enabled in Safari.
Risk Information
Base Score
6.1
MODERATE
Vector
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
EPSS Score
Exploitation Probability
0.421
Associated Vulnerability
No records foundPatch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234