CVE-2005-1331
First published: Wed May 04 2005(Updated: )
The AppleScript Editor in Mac OS X 10.3.9 does not properly display script code for an applescript: URI, which can result in code that is different than the actual code that would be run, which could allow remote attackers to trick users into executing malicious code via certain URI characters such as NULL, control characters, and homographs.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple AppleScript | =2.0.0 | |
| Apple macOS Server | =10.3.2 | |
| Apple macOS Server | =10.3.7 | |
| Apple macOS Server | =10.3.5 | |
| Apple iOS and macOS | =10.3.1 | |
| Apple iOS and macOS | =10.3.5 | |
| Apple macOS Server | =10.3.3 | |
| Apple macOS Server | =10.3.4 | |
| Apple iOS and macOS | =10.3.2 | |
| Apple iOS and macOS | =10.3.7 | |
| Apple iOS and macOS | =10.3.6 | |
| Apple macOS Server | =10.3 | |
| Apple macOS Server | =10.3.8 | |
| Apple macOS Server | =10.3.9 | |
| Apple iOS and macOS | =10.3.8 | |
| Apple macOS Server | =10.3.1 | |
| Apple iOS and macOS | =10.3.9 | |
| Apple iOS and macOS | =10.3.4 | |
| Apple iOS and macOS | =10.3.3 | |
| Apple iOS and macOS | =10.3 | |
| Apple macOS Server | =10.3.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-1331?
CVE-2005-1331 is categorized as a moderate severity vulnerability.
How do I fix CVE-2005-1331?
To fix CVE-2005-1331, users should update their AppleScript Editor to the latest version provided by Apple.
What versions of Mac OS X are affected by CVE-2005-1331?
CVE-2005-1331 affects Mac OS X versions 10.3 to 10.3.9 and the corresponding server versions.
What type of vulnerability is CVE-2005-1331?
CVE-2005-1331 is a security vulnerability related to improper code display in AppleScript Editor.
Can CVE-2005-1331 be exploited remotely?
Yes, CVE-2005-1331 can potentially enable remote attackers to execute malicious code on a user's system.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/remedy
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/apple
- canonical/apple applescript
- version/apple applescript/2.0.0
- canonical/apple macos server
- version/apple macos server/10.3.2
- version/apple macos server/10.3.7
- version/apple macos server/10.3.5
- canonical/apple ios and macos
- version/apple ios and macos/10.3.1
- version/apple ios and macos/10.3.5
- version/apple macos server/10.3.3
- version/apple macos server/10.3.4
- version/apple ios and macos/10.3.2
- version/apple ios and macos/10.3.7
- version/apple ios and macos/10.3.6
- version/apple macos server/10.3
- version/apple macos server/10.3.8
- version/apple macos server/10.3.9
- version/apple ios and macos/10.3.8
- version/apple macos server/10.3.1
- version/apple ios and macos/10.3.9
- version/apple ios and macos/10.3.4
- version/apple ios and macos/10.3.3
- version/apple ios and macos/10.3
- version/apple macos server/10.3.6