CVE-2005-2748

Published: Oct 25, 2005

Modified: Sep 17, 2024

PUBLISHED

Description

The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

P-312

third-party-advisory

government-resource

x_refsource_CIAC

http://www.suresec.org/advisories/adv7.pdf

x_refsource_MISC

ESB-2005.0732

third-party-advisory

x_refsource_AUSCERT

APPLE-SA-2005-09-22

vendor-advisory

x_refsource_APPLE

16920

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-2748

Description

Affected Products

References