CVE-2005-1331

The AppleScript Editor in Mac OS X 10.3.9 does not properly display script code for an applescript: URI, which can result in code that is different than the actual code that would be run, which could allow remote attackers to trick users into executing malicious code via certain URI characters such as NULL, control characters, and homographs.

Published: May 4, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1331
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
apple / applescript	2.0.0	2.0.0.x
apple / mac_os_x_server	10.3.2	10.3.2.x
apple / mac_os_x_server	10.3.7	10.3.7.x
apple / mac_os_x_server	10.3.5	10.3.5.x
apple / mac_os_x	10.3.1	10.3.1.x
apple / mac_os_x	10.3.5	10.3.5.x
apple / mac_os_x_server	10.3.3	10.3.3.x
apple / mac_os_x_server	10.3.4	10.3.4.x
apple / mac_os_x	10.3.2	10.3.2.x
apple / mac_os_x	10.3.7	10.3.7.x
apple / mac_os_x	10.3.6	10.3.6.x
apple / mac_os_x_server	10.3	10.3.x
apple / mac_os_x_server	10.3.8	10.3.8.x
apple / mac_os_x_server	10.3.9	10.3.9.x
apple / mac_os_x	10.3.8	10.3.8.x
apple / mac_os_x_server	10.3.1	10.3.1.x
apple / mac_os_x	10.3.9	10.3.9.x
apple / mac_os_x	10.3.4	10.3.4.x
apple / mac_os_x	10.3.3	10.3.3.x
apple / mac_os_x	10.3	10.3.x
apple / mac_os_x_server	10.3.6	10.3.6.x

Vulnerability Database

289,697

CVE-2005-1331