Computer Security

Apple Mac Os X DiskManagement.framework privilege escalation
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Apple Mac Os X DiskManagement.framework privilege escalation
Published:06.01.2007
Source:BUGTRAQ
SecurityVulns ID:7009
Type:local
Level:5/10
Description:File integrity for file with original permissions database is not checked during permissions restoration.
Affected:APPLE : Mac OS X 10.4
CVE:CVE-2007-0117 (DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation.)
Original documentdocumentKevin Finisterre, MOAB-05-01-2007: Apple DiskManagement BOM Local Privilege Escalation Vulnerability (06.01.2007)
Files:original 0day exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability
 Exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability
 original 0day exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability
 Exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru