The default configuration of Safari in Apple Mac OS X 10.4 through 10.4.10 adds a private key to the keychain with permissions that allow other applications to access the key without warning the user, which might allow other applications to bypass intended access restrictions.
2007-11-15T02:46:00.000
2025-04-09T00:30:58.490
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | mac_os_x | 10.4.1 | No |
| Operating System | apple | mac_os_x | 10.4.2 | No |
| Operating System | apple | mac_os_x | 10.4.3 | No |
| Operating System | apple | mac_os_x | 10.4.4 | No |
| Operating System | apple | mac_os_x | 10.4.5 | No |
| Operating System | apple | mac_os_x | 10.4.6 | No |
| Operating System | apple | mac_os_x | 10.4.7 | No |
| Operating System | apple | mac_os_x | 10.4.8 | No |
| Operating System | apple | mac_os_x | 10.4.9 | No |
| Operating System | apple | mac_os_x | 10.4.10 | No |
| Operating System | apple | mac_os_x_server | 10.4.1 | No |
| Operating System | apple | mac_os_x_server | 10.4.2 | No |
| Operating System | apple | mac_os_x_server | 10.4.3 | No |
| Operating System | apple | mac_os_x_server | 10.4.4 | No |
| Operating System | apple | mac_os_x_server | 10.4.5 | No |
| Operating System | apple | mac_os_x_server | 10.4.6 | No |
| Operating System | apple | mac_os_x_server | 10.4.7 | No |
| Operating System | apple | mac_os_x_server | 10.4.8 | No |
| Operating System | apple | mac_os_x_server | 10.4.9 | No |
| Operating System | apple | mac_os_x_server | 10.4.10 | No |
| Application | apple | safari | * | Yes |