CVE-2008-4234

Name of the Vulnerable Software and Affected Versions: Apple Mac OS X versions prior to 10.5.6

Description: The issue is related to an incomplete blacklist vulnerability in the Quarantine feature in CoreTypes. This allows user-assisted remote attackers to execute arbitrary code via an executable file with the content type indicating no application association for the file, which does not trigger a "potentially unsafe" warning message.

Recommendations: For Apple Mac OS X versions prior to 10.5.6, update to version 10.5.6 or later to resolve the issue.