Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH environment variable.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mac OS X CF_CHARSET_PATH环境变量处理缓冲区溢出漏洞
Vulnerability Description
Mac OS X是苹果家族的操作系统。 Mac OS X中默认捆绑的Core Foundation程序库中存在缓冲区溢出漏洞,可能允许攻击者获取root用户权限。 漏洞的起因是由于没有正确的处理CF_CHARSET_PATH环境变量。如果通过这个变量传送了大于1024个字符的字符串的话,就可能导致栈溢出,允许攻击者通过在栈中覆盖函数的返回地址来控制程序流。 任何链接到Core Foundation函数库上的应用程序都可用作这个漏洞的攻击载体。一些有漏洞的setuid root二进制程序包括su,pppd和
CVSS Information
N/A
Vulnerability Type
N/A