Lucene search

PRIOn knowledge basePRION:CVE-2008-2311

HistoryJul 01, 2008 - 6:41 p.m.

Race condition

2008-07-0118:41:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.02 Low

EPSS

Percentile

88.7%

JSON

Launch Services in Apple Mac OS X before 10.5, when Open Safe Files is enabled, allows remote attackers to execute arbitrary code via a symlink attack, probably related to a race condition and automatic execution of a downloaded file.

CPENameOperatorVersion
mac_os_xeq10.4.3
mac_os_xeq10.4.1
mac_os_xeq10.5.1
mac_os_xeq10.4.10
mac_os_xeq10.4.9
mac_os_xeq10.4.7
mac_os_xeq10.4.4
mac_os_xeq10.5.3
mac_os_xeq10.5
mac_os_xeq10.5.2

Name	Operator	Version
mac_os_x	eq	10.4.3
mac_os_x	eq	10.4.1
mac_os_x	eq	10.5.1
mac_os_x	eq	10.4.10
mac_os_x	eq	10.4.9
mac_os_x	eq	10.4.7
mac_os_x	eq	10.4.4
mac_os_x	eq	10.5.3
mac_os_x	eq	10.5
mac_os_x	eq	10.5.2

Rows per page:

1-10 of 301

References

lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

secunia.com/advisories/30802

securitytracker.com/id?1020393

support.apple.com/kb/HT2163

www.securityfocus.com/bid/30018

www.vupen.com/english/advisories/2008/1981/references

exchange.xforce.ibmcloud.com/vulnerabilities/43495

7.6 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.02 Low

EPSS

Percentile

88.7%

JSON

Related for PRION:CVE-2008-2311