http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200408-060

LaunchServices的MacOSX10.3.4和10.2.8版本存在自动注册和执行新应用程序的漏洞。攻击者不警告用户就可执行任意代码。

VulnerablesoftwareandversionsConfiguration1OR*cpe:/o:apple:mac_os_x:10.2.8*cpe:/o:apple:mac_os_x:10.3.4*cpe:/o:apple:mac_os_x_server:10.2.8*cpe:/o:apple:mac_os_x_server:10.3.4*DenotesVulnerableSoftware*ChangesrelatedtovulnerabilityconfigurationsTechnicalDetailsVulnerabilityType(ViewAll)CVEStandardVulnerabilityEntry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0538