CVE-2008-7303

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.5.x

Description The issue in Apple Mac OS X allows remote attackers to access network resources via a crafted application. This is because the nonet and nointernet sandbox profiles do not propagate restrictions to all created processes. A demonstration of this issue involves using launchctl to trigger the launchd daemon's execution of a script file.

Recommendations For Apple Mac OS X versions 10.5.x, consider restricting access to the launchd daemon and limiting the execution of script files until a fix is available. As a temporary workaround, avoid using the nonet and nointernet sandbox profiles to minimize the risk of exploitation.