CVE-2005-2748

The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.3.9:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2005-10-25 22:06

Updated : 2023-12-10 10:28


NVD link : CVE-2005-2748

Mitre link : CVE-2005-2748

CVE.ORG link : CVE-2005-2748


JSON object : View

Products Affected

apple

  • mac_os_x_server
  • mac_os_x