Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 16/08/2015 Updated: 21/09/2017

CVSS v2 Base Score: 4.8 | Impact Score: 4.9 | Exploitability Score: 6.5

VMScore: 427

Vector: AV:A/AC:L/Au:N/C:P/I:P/A:N

The Dictionary app in Apple OS X prior to 10.10.5 does not use HTTPS, which allows man-in-the-middle malicious users to obtain sensitive information by sniffing the network or spoof word definitions by modifying the client-server data stream.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x

CWE-20 http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html https://support.apple.com/kb/HT205031 http://www.securityfocus.com/bid/76340 http://www.securitytracker.com/id/1033276 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-3774

Vulnerability Summary

References

Vulmon Search

About

Products

Connect