Info

Last Modified

2 months ago

Percent Complete

20%

Disclosure

Jun 30, 2008

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

This Entry needs help! It is only 20% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Description

(Description Provided by CVE) : Launch Services in Apple Mac OS X before 10.5, when Open Safe Files is enabled, allows remote attackers to execute arbitrary code via a symlink attack, probably related to a race condition and automatic execution of a downloaded file.

Classification

Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Upgrade
Disclosure: Vendor Verified

Products

Unknown or Incomplete

References

Bugtraq ID: 30018
Vendor Specific News/Changelog Entry: http://support.apple.com/kb/HT2163
Related OSVDB ID: 46663 46664 46665 46667 46668 46669
ISS X-Force ID: 43495
Vendor Specific Advisory URL: http://support.apple.com/kb/HT2163
Secunia Advisory ID: 30802
Mail List Post: http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html
CVE ID: 2008-2311 (see also: NVD)
Security Tracker: 1020393

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches