4 matches found
CVE-2005-1933
Dashboard in Apple Mac OS X Tiger 10.4 allows attackers to execute arbitrary commands by overriding the behavior of system widgets via a user widget with the same bundle identifier CFBundleIdentifier, a different vulnerability than CVE-2005-1474...
CVE-2005-1933
CVE-2005-1933 affects Apple Mac OS X Tiger (10.4) Dashboard. It arises when a user widget uses the same CFBundleIdentifier as a system widget, causing Dashboard to override the legitimate widget and potentially let the attacker execute arbitrary commands. The impact is user-level code execution v...
Apple Safari automatically installs Dashboard widgets
Overview Apple Safari on Mac OS X Tiger automatically installs Dashboard widgets without user intervention or notice. Description DashboardDashboard is a new feature introduced in Apple Mac OS X Tiger 10.4. Dashboard is a collection of applications called "widgets." The system-installed widgets a...
Apple Mac OSX executes arbitrary widget with same "bundle identifier" as system widget
Overview Apple Mac OS X Tiger Dashboard executes arbitrary widgets with the same "bundle identifier" as a system widget. This can allow a user-installed widget to override a system-installed one. Description DashboardDashboard is a new feature introduced in Apple Mac OS X Tiger 10.4. Dashboard is...