Vulnerabilities

CVE-2006-1471

by Fred · 27/06/2006

Format string vulnerability in the CF_syslog function launchd in Apple Mac OS X 10.4 up to 10.4.6 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a syslog call in the logging facility, as demonstrated by using a crafted plist file.

Date published : 2006-06-27

http://lists.apple.com/archives/security-announce/2006/Jun/msg00000.html

http://www.securityfocus.com/bid/18686

Similar

Tags: Cybersecurity Alert