Unrated severityNVD Advisory· Published Oct 17, 2006· Updated Jun 16, 2026
CVE-2006-5328
CVE-2006-5328
Description
OpenBase SQL 10.0 and earlier, as used in Apple Xcode 2.2 2.2 and earlier and possibly other products, allows local users to create arbitrary files via a symlink attack on the simulation.sql file.
Affected products
7cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*range: <=2.2
- (no CPE)range: <=2.2
cpe:2.3:a:openbase_international_ltd:openbase:7.0.15:*:mac_os_x:*:*:*:*:*+ 3 more
- cpe:2.3:a:openbase_international_ltd:openbase:7.0.15:*:mac_os_x:*:*:*:*:*
- cpe:2.3:a:openbase_international_ltd:openbase:8.0.4:*:mac_os_x:*:*:*:*:*
- cpe:2.3:a:openbase_international_ltd:openbase:9.1.5:*:mac_os_x:*:*:*:*:*
- cpe:2.3:a:openbase_international_ltd:openbase:*:*:mac_os_x:*:*:*:*:*range: <=10.0
- Range: <=10.0
Patches
Vulnerability mechanics
References
8- secunia.com/advisories/22390nvdVendor Advisory
- lists.apple.com/archives/security-announce/2007/Oct/msg00001.htmlnvd
- secunia.com/advisories/27441nvd
- www.digitalmunition.com/DMA%5B2006-1016a%5D.txtnvd
- www.digitalmunition.com/Xcode_OpenBase_createfile.plnvd
- www.securityfocus.com/bid/20562nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/3665nvd
News mentions
0No linked articles in our index yet.