CVE-2006-1471

2006-06-27T22:13:00
ID CVE-2006-1471
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:32:00

Description

Format string vulnerability in the CF_syslog function launchd in Apple Mac OS X 10.4 up to 10.4.6 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a syslog call in the logging facility, as demonstrated by using a crafted plist file.