launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory.
References
Link | Resource |
---|---|
http://www.suresec.org/advisories/adv3.pdf | Vendor Advisory |
http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html | Patch Vendor Advisory |
http://marc.info/?l=bugtraq&m=111833509424379&w=2 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-06-07 21:00
Updated : 2016-10-17 20:22
NVD link : CVE-2005-1725
Mitre link : CVE-2005-1725
JSON object : View
CWE
Products Affected
apple
- mac_os_x_server