CVE-2005-1725

launchd 106 - Local Privilege Escalation

Title source: llm

Description

launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory.

Exploits (1)

exploitdb WORKING POC VERIFIED

by intropy · clocalosx

https://www.exploit-db.com/exploits/1043

View Code ZIP pw:eip

References (3)

[Mailing List] http://marc.info/?l=bugtraq&m=111833509424379&w=2

[Vendor Advisory] http://www.suresec.org/advisories/adv3.pdf

[Patch, Vendor Advisory] http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html

Scores

EPSS 0.0016

EPSS Percentile 36.6%

Details

Status published

Products (2)

apple/mac_os_x_server 10.4

apple/mac_os_x_server 10.4.1

Published Jun 08, 2005

Tracked Since Feb 18, 2026