Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0822

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-0822
Last Modified 05 Sep 2008 04:39:30
Published 07 Sep 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0822

Summary

Buffer overflow in The Core Foundation framework (CoreFoundation.framework) in Mac OS X 10.2.8, 10.3.4, and 10.3.5 allows local users to execute arbitrary code via a certain environment variable.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.2.8

  • Apple Mac Os X 10.3.4

  • Apple Mac Os X 10.3.5

  • Apple Mac Os X Server 10.2.8

  • Apple Mac Os X Server 10.3.4

  • Apple Mac Os X Server 10.3.5


References

CERT-VN - VU#545446

XF - macos-corefoundation-bo(17295)

BID - 11136

APPLE - APPLE-SA-2004-09-07

CIAC - O-212

SECUNIA - 12491


Last Updated: 27 May 2016 10:38:46