Vulnerability Database

314,373

Total vulnerabilities in the database

CVE-2008-2311

Launch Services in Apple Mac OS X before 10.5, when Open Safe Files is enabled, allows remote attackers to execute arbitrary code via a symlink attack, probably related to a race condition and automatic execution of a downloaded file.

  • Published: Jul 1, 2008
  • Updated: Nov 9, 2025
  • CVE: CVE-2008-2311
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.6
  • AV:N/AC:H/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
apple / mac_os_x 10.4.3 10.4.3.x
apple / mac_os_x_server 10.4.3 10.4.3.x
apple / mac_os_x_server 10.5.2 10.5.2.x
apple / mac_os_x_server 10.4.10 10.4.10.x
apple / mac_os_x_server 10.4.9 10.4.9.x
apple / mac_os_x_server 10.4.11 10.4.11.x
apple / mac_os_x 10.4.1 10.4.1.x
apple / mac_os_x_server 10.4.2 10.4.2.x
apple / mac_os_x_server 10.4.4 10.4.4.x
apple / mac_os_x 10.5.1 10.5.1.x
apple / mac_os_x 10.4.10 10.4.10.x
apple / mac_os_x_server 10.4.1 10.4.1.x
apple / mac_os_x 10.4.9 10.4.9.x
apple / mac_os_x_server 10.5.1 10.5.1.x
apple / mac_os_x 10.4.7 10.4.7.x
apple / mac_os_x 10.4.4 10.4.4.x
apple / mac_os_x 10.5.3 10.5.3.x
apple / mac_os_x_server 10.5.3 10.5.3.x
apple / mac_os_x 10.5 10.5.x
apple / mac_os_x_server 10.4.5 10.4.5.x
apple / mac_os_x 10.5.2 10.5.2.x
apple / mac_os_x_server 10.4.6 10.4.6.x
apple / mac_os_x_server 10.4.8 10.4.8.x
apple / mac_os_x 10.4.6 10.4.6.x
apple / mac_os_x 10.4.5 10.4.5.x
apple / mac_os_x 10.4.11 10.4.11.x
apple / mac_os_x 10.4.8 10.4.8.x
apple / mac_os_x_server 10.5 10.5.x
apple / mac_os_x_server 10.4.7 10.4.7.x
apple / mac_os_x 10.4.2 10.4.2.x