2 matches found
CVE-2004-1398
CVE-2004-1398 describes a format string vulnerability in prelink.c within kextload on Apple OS X, used by TDIXSupport in Roxio Toast Titanium and possibly other products. The underlying issue arises from format string specifiers in the extension argument, enabling local users to execute arbitrary...
CVE-2006-4801
CVE-2006-4801 describes a race condition in Deja Vu, used in Roxio Toast Titanium 7 (and possibly other products), where temporary files (including dejavu_manual.rb) are executed with elevated privileges, allowing local users to execute arbitrary code. The details specify a local-privilege-elevat...