CVE-2007-5863
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-5863
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Software Update in Apple Mac OS X 10.5.1 allows remote attackers to execute arbitrary commands via a man-in-the-middle (MITM) attack between the client and the server, using a modified distribution definition file with the "allow-external-scripts" option.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apple Mac OS X 软件升级任意代码执行漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mac OS X是苹果家族机器所使用的操作系统。 OS X软件升级机制的实现上存在漏洞,远程攻击者可能通过伪造虚假的升级站点控制用户系统。 OS X软件升级机制使用"发布软件包",主要包含有两个部分:XML的目录文件列出可用的升级;"发布定义文件"包含有XML和JavaScript编码的信息,定义了在安装升级时的各方面内容。 当OS X检查新的升级的时候,首先要联络swscan.apple.com接收XML目录文件,该文件引用可能位于其他服务器上的发布定义文件。软件升级接收到这些文件后调用其他一些Java
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-5863
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-5863
Please Login to view more intelligence information
- http://docs.info.apple.com/article.html?artnum=307179x_refsource_CONFIRM
- http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.htmlvendor-advisoryx_refsource_APPLE
- https://nvd.nist.gov/vuln/detail/CVE-2007-5863
Same Patch Batch · n/a · 2007-12-19 · 26 CVEs total
| CVE-2007-5856 | Apple Mac OS X Quick Look敏感信息泄露漏洞 | |
| CVE-2007-5963 | KDE KDM 未明本地拒绝服务漏洞 | |
| CVE-2007-6451 | Wireshark CIP 未明漏洞 | |
| CVE-2007-6450 | Wireshark RPL拒绝服务攻击漏洞 | |
| CVE-2007-6441 | Wireshark WiMAX解析器拒绝服务攻击漏洞 | |
| CVE-2007-6439 | Wireshark 资源管理错误漏洞 | |
| CVE-2007-6438 | Wireshark 缓冲区错误漏洞 | |
| CVE-2007-6437 | Balabit syslog-ng 拒绝服务漏洞 | |
| CVE-2007-5861 | Apple Mac OS X Spotlight 未明安全漏洞 | |
| CVE-2007-5860 | Apple Mac OS X SpinTracer本地用户权限提升漏洞 | |
| CVE-2007-5859 | Apple Mac OS X Safari RSS 未明安全漏洞 | |
| CVE-2007-5858 | Apple Safari 跨站脚本漏洞 | |
| CVE-2007-5857 | Apple Mac OS X Quick Look 敏感信息泄露漏洞 | |
| CVE-2007-3876 | Adobe Flash Player DNS重新绑定漏洞 | |
| CVE-2007-5855 | Apple Mac OS X Mail 验证信息加密漏洞 | |
| CVE-2007-5854 | Apple Mac OS X Launch Services 跨站脚本攻击漏洞 | |
| CVE-2007-5853 | Apple Mac OS X IO Storage Family 未明安全漏洞 | |
| CVE-2007-5851 | Apple Mac OS X iChat 访问控制及验证漏洞 | |
| CVE-2007-5850 | Apple Mac OS X Desktop Services 堆溢出漏洞 | |
| CVE-2007-5849 | CUPS SNMP asn1_get_string()函数远程栈溢出漏洞 |
Showing top 20 of 26 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2007-5863
No comments yet