Computer Security
[EN] securityvulns.ru no-pyccku


Apple Mac Os X DiskManagement.framework privilege escalation
Published:06.01.2007
Source:
SecurityVulns ID:7009
Type:local
Threat Level:
5/10
Description:File integrity for file with original permissions database is not checked during permissions restoration.
Affected:APPLE : Mac OS X 10.4
CVE:CVE-2007-0117 (DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation.)
Original documentdocumentKevin Finisterre, MOAB-05-01-2007: Apple DiskManagement BOM Local Privilege Escalation Vulnerability (06.01.2007)
Files:original 0day exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability
 original 0day exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability
 Exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability
 Exploits Apple DiskManagement BOM Local Privilege Escalation Vulnerability

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod