Apple Mac OS X pax Archive Utility Remote Code Execution Vulnerability

Apple Mac OS X pax Archive Utility Remote Code Execution Vulnerability

Apple Mac OS X is prone to a remote code-execution vulnerability because the software fails to adequately validate user-supplied data.

Successfully exploiting this issue will allow attackers to execute arbitrary code with the privileges of the currently logged-in user. This will facilitate the remote compromise of affected computers.

NOTE: This vulnerability was previously covered in BID 28304 (Apple Mac OS X 2008-002 Multiple Security Vulnerabilities), but has been given its own record to better document the issue.