Unrated severityNVD Advisory· Published Oct 14, 2011· Updated Apr 29, 2026
CVE-2011-0185
CVE-2011-0185
Description
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS X before 10.7.2 allows local users to gain privileges via a crafted name of an executable file.
Affected products
22cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*range: <=10.7.1
- cpe:2.3:o:apple:mac_os_x:10.7.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.7:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.8:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*range: <=10.7.1
- cpe:2.3:o:apple:mac_os_x_server:10.7.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.4:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.5:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.6:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.7:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.8:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- lists.apple.com/archives/Security-announce/2011//Oct/msg00003.htmlnvdVendor Advisory
- support.apple.com/kb/HT5002nvdVendor Advisory
- www.securityfocus.com/bid/50085nvd
- www.securityfocus.com/bid/50092nvd
News mentions
0No linked articles in our index yet.