CVE-2006-1442

2006-05-12T21:02:00
ID CVE-2006-1442
Type cve
Reporter cve@mitre.org
Modified 2017-07-20T01:30:00

Description

The bundle API in CoreFoundation in Apple Mac OS X 10.3.9 and 10.4.6 loads dynamic libraries even if the client application has not directly requested it, which allows attackers to execute arbitrary code from an untrusted bundle. This vulnerability is addressed in the following product release: Apple, Mac OS X, 10.4.6 (2006-003)