Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH environment variable.
2005-03-21T05:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | mac_os_x | 10.3 | Yes |
| Operating System | apple | mac_os_x | 10.3.1 | Yes |
| Operating System | apple | mac_os_x | 10.3.2 | Yes |
| Operating System | apple | mac_os_x | 10.3.3 | Yes |
| Operating System | apple | mac_os_x | 10.3.4 | Yes |
| Operating System | apple | mac_os_x | 10.3.5 | Yes |
| Operating System | apple | mac_os_x | 10.3.6 | Yes |
| Operating System | apple | mac_os_x | 10.3.7 | Yes |
| Operating System | apple | mac_os_x | 10.3.8 | Yes |
| Operating System | apple | mac_os_x_server | 10.3 | Yes |
| Operating System | apple | mac_os_x_server | 10.3.1 | Yes |
| Operating System | apple | mac_os_x_server | 10.3.2 | Yes |
| Operating System | apple | mac_os_x_server | 10.3.3 | Yes |
| Operating System | apple | mac_os_x_server | 10.3.4 | Yes |
| Operating System | apple | mac_os_x_server | 10.3.5 | Yes |
| Operating System | apple | mac_os_x_server | 10.3.6 | Yes |