CVE-2013-5135 - OpenCVE

Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers in a VNC username.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Apple	Apple Remote Desktop Mac Os X

Configuration 1 [-]

OR	cpe:2.3:a:apple:apple_remote_desktop::::::::
	cpe:2.3:a:apple:apple_remote_desktop:3.0.0:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.1:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.2:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.2.1:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.2.2:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.3:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.3.1:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.3.2:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.4:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.5:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.5.1:::::::*
	cpe:2.3:a:apple:apple_remote_desktop:3.5.2:::::::*

Configuration 2 [-]

OR	cpe:2.3:o:apple:mac_os_x::supplemental_update::::::*
	cpe:2.3:o:apple:mac_os_x:10.8.0:::::::*
	cpe:2.3:o:apple:mac_os_x:10.8.1:::::::*
	cpe:2.3:o:apple:mac_os_x:10.8.2:::::::*
	cpe:2.3:o:apple:mac_os_x:10.8.3:::::::*
	cpe:2.3:o:apple:mac_os_x:10.8.4:::::::*
	cpe:2.3:o:apple:mac_os_x:10.8.5:::::::*

References

Link	Resource
http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html	Vendor Advisory
http://lists.apple.com/archives/security-announce/2013/Oct/msg00007.html	Vendor Advisory
http://lists.apple.com/archives/security-announce/2013/Oct/msg00008.html	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: apple

Published: 2022-10-03T16:14:55

Updated: 2022-10-03T16:14:55

Reserved: 2022-10-03T00:00:00

Link: CVE-2013-5135

JSON object: View

NVD Information

Status : Analyzed

Published: 2013-10-24T03:48:48.877

Modified: 2018-10-30T16:26:14.403

Link: CVE-2013-5135

JSON object: View

Redhat Information

No data.

CWE

CWE-134

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers in a VNC username."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-10-03T16:14:55", "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "shortName": "apple"}, "references": [{"name": "APPLE-SA-2013-10-22-3", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html"}, {"name": "APPLE-SA-2013-10-22-6", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00007.html"}, {"name": "APPLE-SA-2013-10-22-7", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00008.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "product-security@apple.com", "ID": "CVE-2013-5135", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers in a VNC username."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "APPLE-SA-2013-10-22-3", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html"}, {"name": "APPLE-SA-2013-10-22-6", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00007.html"}, {"name": "APPLE-SA-2013-10-22-7", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00008.html"}]}}}}, "cveMetadata": {"assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c", "assignerShortName": "apple", "cveId": "CVE-2013-5135", "datePublished": "2022-10-03T16:14:55", "dateReserved": "2022-10-03T00:00:00", "dateUpdated": "2022-10-03T16:14:55", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apple:apple_remote_desktop:*:*:*:*:*:*:*:*", "matchCriteriaId": "DA6068E6-47A3-44C0-AAE7-25952E9B18CD", "versionEndIncluding": "3.5.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "4E315CDB-EABA-4632-A4E2-F207695D9139", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "AB6214BD-6D4B-4F32-B35A-D638723C240A", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.2:*:*:*:*:*:*:*", "matchCriteriaId": "C3EF0960-C1A7-4770-80AD-4324925F8966", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "69A47AAB-EC72-474E-A184-1E487D10B747", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "5509B564-A235-44B9-B0AB-A72AFF5D2837", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.3:*:*:*:*:*:*:*", "matchCriteriaId": "52113D2A-3C14-4299-B4E9-0731630FC5D3", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "043E86FA-CFD5-4845-BF5E-F42B81EE9C64", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "2BA5FDCD-BF01-4BF3-8F4C-4E9829C2BD6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.4:*:*:*:*:*:*:*", "matchCriteriaId": "72309021-65E6-43C0-993D-81F6FA0D16C0", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5:*:*:*:*:*:*:*", "matchCriteriaId": "00BA9937-8F14-4AED-B9DA-ABFA6837CCD5", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "8B3B607B-3B0B-44CA-809E-CBC4A656D4D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "16C73945-1E37-4CFD-BA7D-0F43D339BC0A", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:*:supplemental_update:*:*:*:*:*:*", "matchCriteriaId": "BA9ABDE2-A7F3-4D0B-9BBB-57F27AE14B1D", "versionEndIncluding": "10.8.5", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "B2082D62-3821-4DBA-8690-67489F44C38D", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "8F0DB1BC-DC16-423E-B0C7-8E9C996A50B5", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "E59315BA-B9F1-46A5-86E7-8BE2ED97BA4F", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "55841123-F78F-42E0-8D40-C688C4B4D29C", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.8.4:*:*:*:*:*:*:*", "matchCriteriaId": "252640D3-5CB8-4C3D-9E8B-ED452293C805", "vulnerable": true}, {"criteria": "cpe:2.3:o:apple:mac_os_x:10.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "F3D30B4B-DA63-40B0-B0C9-F3992CF25706", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers in a VNC username."}, {"lang": "es", "value": "Vulnerabilidad de format string en Screen Sharing Server de Apple Mac OS X anterior a 10.9 y Apple Remote Desktop anterior a 3.5.4 permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s especificadores de formato de cadena en el nombre de usuario VNC."}], "id": "CVE-2013-5135", "lastModified": "2018-10-30T16:26:14.403", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-10-24T03:48:48.877", "references": [{"source": "product-security@apple.com", "tags": ["Vendor Advisory"], "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html"}, {"source": "product-security@apple.com", "tags": ["Vendor Advisory"], "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00007.html"}, {"source": "product-security@apple.com", "tags": ["Vendor Advisory"], "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00008.html"}], "sourceIdentifier": "product-security@apple.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-134"}], "source": "nvd@nist.gov", "type": "Primary"}]}