Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The kSBXProfileNoNetwork and kSBXProfileNoInternet sandbox profiles in Apple Mac OS X 10.5.x through 10.7.x do not propagate restrictions to all created processes, which allows remote attackers to access network resources via a crafted application, as demonstrated by use of osascript to send Apple events to the launchd daemon, a related issue to CVE-2008-7303.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Mac OS X安全漏洞
Vulnerability Description
Apple Mac OS X 10.5.x至10.7.x版本中存在漏洞。由于kSBXProfileNoNetwork和kSBXProfileNoInternet sandbox配置文件不传播限制所有创建的进程,远程攻击者可借助特制的应用程序访问网络资源,该漏洞已在使用osascript向launchd守护进程发送Apple的事件中被证实。
CVSS Information
N/A
Vulnerability Type
N/A