virus logo Intrusion Prevention

Apple.MacOS.X.Catalog.Distribution.File.Command.Execution

description-logoDescription

This indicates an attempt to exploit a man-in-the-middle vulnerability in the Software Update in Apple Mac OS X 10.5.1.
The Software Update in Apple Mac OS X 10.5.1 allows remote attackers to execute arbitrary commands via a man-in-the-middle (MITM) attack between the client and the server. The attack can be launched using a modified distribution definition file with the "allow-external-scripts" option.

affected-products-logoAffected Products

Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.5
Apple Mac OS X 10.5.1
Apple Mac OS X 10.5

Impact logoImpact

System compromise: remote code execution.

recomended-action-logoRecommended Actions

The vendor released an update to address this issue.
Apple Mac OS X Server 10.5.1
Apple Security Update 2007-009 (10.5.1)
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16527&cat= 1&platform=osx&method=sa/SecUpd2007-009.dmg
Apple Mac OS X 10.5.1
Apple Security Update 2007-009 (10.5.1)
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16527&cat= 1&platform=osx&method=sa/SecUpd2007-009.dmg

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 15233
Created Dec 20, 2007
Updated Jun 09, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2007-5863
Exploit Prediction Score 91.79%
Default Action drop
Active
Affected OS MacOS
Affected App Apple