CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
0.4%
launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory.
Vendor | Product | Version | CPE |
---|---|---|---|
apple | mac_os_x_server | 10.4 | cpe:2.3:o:apple:mac_os_x_server:10.4:*:*:*:*:*:*:* |
apple | mac_os_x_server | 10.4.1 | cpe:2.3:o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:* |