CVE-2007-5854
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-5854
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Launch Services in Apple Mac OS X 10.4.11 and 10.5.1 does not treat HTML files as unsafe content, which allows attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information via a crafted HTML file.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apple Mac OS X Launch Services 跨站脚本攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mac OS X是苹果家族机器所使用的操作系统。 Apple 2007-009安全更新修复了Mac OS X中的多个安全漏洞,远程或本地攻击者可能利用这些漏洞造成多种威胁。启动服务没有将HTML文件处理为可能的不安全内容,如果用户受骗打开了恶意的HTML文件的话,攻击者就可以导致泄露敏感信息或执行跨站脚本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-5854
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-5854
Please Login to view more intelligence information
- http://docs.info.apple.com/article.html?artnum=307179x_refsource_CONFIRM
- http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlvendor-advisoryx_refsource_APPLE
- https://nvd.nist.gov/vuln/detail/CVE-2007-5854
Same Patch Batch · n/a · 2007-12-19 · 26 CVEs total
| CVE-2007-5857 | Apple Mac OS X Quick Look 敏感信息泄露漏洞 | |
| CVE-2007-5963 | KDE KDM 未明本地拒绝服务漏洞 | |
| CVE-2007-6451 | Wireshark CIP 未明漏洞 | |
| CVE-2007-6450 | Wireshark RPL拒绝服务攻击漏洞 | |
| CVE-2007-6441 | Wireshark WiMAX解析器拒绝服务攻击漏洞 | |
| CVE-2007-6439 | Wireshark 资源管理错误漏洞 | |
| CVE-2007-6438 | Wireshark 缓冲区错误漏洞 | |
| CVE-2007-6437 | Balabit syslog-ng 拒绝服务漏洞 | |
| CVE-2007-5863 | Apple Mac OS X 软件升级任意代码执行漏洞 | |
| CVE-2007-5861 | Apple Mac OS X Spotlight 未明安全漏洞 | |
| CVE-2007-5860 | Apple Mac OS X SpinTracer本地用户权限提升漏洞 | |
| CVE-2007-5859 | Apple Mac OS X Safari RSS 未明安全漏洞 | |
| CVE-2007-5858 | Apple Safari 跨站脚本漏洞 | |
| CVE-2007-3876 | Adobe Flash Player DNS重新绑定漏洞 | |
| CVE-2007-5856 | Apple Mac OS X Quick Look敏感信息泄露漏洞 | |
| CVE-2007-5855 | Apple Mac OS X Mail 验证信息加密漏洞 | |
| CVE-2007-5853 | Apple Mac OS X IO Storage Family 未明安全漏洞 | |
| CVE-2007-5851 | Apple Mac OS X iChat 访问控制及验证漏洞 | |
| CVE-2007-5850 | Apple Mac OS X Desktop Services 堆溢出漏洞 | |
| CVE-2007-5849 | CUPS SNMP asn1_get_string()函数远程栈溢出漏洞 |
Showing top 20 of 26 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2007-5854
No comments yet