PT-2008-5509 · Apple · Macos X

Publicado

2008-10-10

Atualizado

2017-08-08

CVE-2008-4214

CVSS v2.0

4.6

Média

Vetor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Mac OS X versions 10.4.11 and 10.5.5

Description: The issue is related to an insecure file operation on temporary files in the Script Editor, allowing local users to cause the scripting dictionary to be written to arbitrary locations.

Recommendations: For Mac OS X version 10.4.11, update to a version that fixes the insecure file operation issue. For Mac OS X version 10.5.5, update to a version that fixes the insecure file operation issue. As a temporary workaround, consider restricting access to temporary files used by the Script Editor to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2008-4214

Produtos afetados

Macos X

PT-2008-5509 · Apple · Macos X

CVE-2008-4214

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9