Vulnerabilities > CVE-2005-0716 - Local Buffer Overflow vulnerability in Apple Mac OS X Core Foundation
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH environment variable.
Vulnerable Configurations
Exploit-Db
description | Mac OS X <= 10.3.8 (CF_CHARSET_PATH) Local BOF Exploit (2). CVE-2005-0716. Local exploit for osx platform |
id | EDB-ID:2111 |
last seen | 2016-01-31 |
modified | 2006-08-02 |
published | 2006-08-02 |
reporter | Kevin Finisterre |
source | https://www.exploit-db.com/download/2111/ |
title | Mac OS X <= 10.3.8 CF_CHARSET_PATH Local BoF Exploit 2 |
Nessus
NASL family | MacOS X Local Security Checks |
NASL id | MACOSX_SECUPD2005-003.NASL |
description | The remote host is missing Security Update 2005-003. This security update contains security fixes for the following applications : - AFP Server - Bluetooth Setup Assistant - Core Foundation - Cyrus IMAP - Cyrus SASL - Folder Permissions - Mailman - Safari These programs have multiple vulnerabilities which may allow a remote attacker to execute arbitrary code. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 17587 |
published | 2005-03-21 |
reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/17587 |
title | Mac OS X Multiple Vulnerabilities (Security Update 2005-003) |
code |
|
Seebug
bulletinFamily | exploit |
description | No description provided by source. |
id | SSV:78922 |
last seen | 2017-11-19 |
modified | 2014-07-01 |
published | 2014-07-01 |
reporter | Root |
source | https://www.seebug.org/vuldb/ssvid-78922 |
title | Apple Mac OS X 10.3.x Multiple Vulnerabilities |