CVE-2008-2308

Unspecified vulnerability in Alias Manager in Apple Mac OS X 10.5.1 and earlier on Intel platforms allows local users to gain privileges or cause a denial of service (memory corruption and application crash) by resolving an alias that contains crafted AFP volume mount information.

Link	Resource
http://support.apple.com/kb/HT2163	Patch
http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html
http://www.securityfocus.com/bid/30018
http://securitytracker.com/id?1020390
http://secunia.com/advisories/30802	Vendor Advisory
http://www.vupen.com/english/advisories/2008/1981/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43474

Configuration 1

cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.3:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.9:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.4:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.10:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.5.1:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.5:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.6:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.8:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x_server:10.4.7:*:*:*:*:*:*:* cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*

---

Published : 2008-07-01 05:41

Updated : 2017-08-08 01:30

---

NVD link : CVE-2008-2308

Mitre link : CVE-2008-2308

No products.

CWE-264

NVD-CWE-noinfo