CVE-2005-1725

launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory.

Published: Jun 8, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1725
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
apple / mac_os_x_server	10.4.1	10.4.1.x
apple / mac_os_x_server	10.4	10.4.x

http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html
http://marc.info/?l=bugtraq&m=111833509424379&w=2
http://www.suresec.org/advisories/adv3.pdf

Vulnerability Database

290,206

CVE-2005-1725