What is CVE-2006-0848?

CVE-2006-0848 is a vulnerability in N/a. Published 2006-02-22.

Is CVE-2006-0848 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2006-0848

The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) t…

EPSS: 0.788 (99.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

18963 (x_refsource_SECUNIA, third-party-advisory)
www.mathematik.uni-ulm.de/numerik/staff/lehn/macosx.html (x_refsource_MISC)
VU#999708 (x_refsource_CERT-VN, third-party-advisory)
16736 (vdb-entry, x_refsource_BID)
1015652 (vdb-entry, x_refsource_SECTRACK)
TA06-053A (x_refsource_CERT, third-party-advisory)
ADV-2006-0671 (vdb-entry, x_refsource_VUPEN)
TA06-062A (x_refsource_CERT, third-party-advisory)
www.heise.de/english/newsticker/news/69862 (x_refsource_MISC)
23510 (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2006-0848?: CVE-2006-0848 is a vulnerability in N/a. Published 2006-02-22.
Is CVE-2006-0848 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.