Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:174790
HistoryJun 21, 2004 - 12:00 a.m.

Apple Mac OS X vulnerable to privilege escalation when using Directory Services

2004-06-2100:00:00
www.kb.cert.org
6

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

41.7%

JSON

Overview

A vulnerability in Mac OS X may permit a local authenticated user with physical access to the machine to gain elevated privileges.

Description

Mac OS X permits the remote authentication of users via directory sevices lookups. When a user logs in to a machine configured to use the Directory Services to provide authentication, it is possible to disconnect the machine’s network connection and potentially be logged in with a Finder running as root. This gives the user full root permissions on the machine. Applications started in the session will also run as root.

This vulnerability affects Mac OS X 10.3 through 10.3.3.

Impact

A local authenticated user with physical access to the machine may be able to gain root privileges to the system.

Solution

Apple has resolved this issue in Mac OS X 10.3.4. A free upgrade is available at <http://www.apple.com/support/downloads/&gt;.

Vendor Information

174790

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Apple Computer Inc. __ Affected

Updated: June 21, 2004

Status

Affected

Vendor Statement

The issue reported in Vulnerability Note VU#174790 affects Mac OS X versions 10.3 through 10.3.3. The issue has been fixed in Mac OS X 10.3.4 which is available as a free upgrade via <http://www.apple.com/support/downloads/&gt;

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23174790 Feedback>).

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to Jim Foraker for reporting this vulnerability.

This document was written by Jason A Rafail.

Other Information

CVE IDs: CVE-2004-0514
Severity Metric: 0.24 Date Public:

Related

cve 1
nessus 1
cve
cve
CVE-2004-0514
2004-08-18 04:00:00
nessus
nessus
Mac OS X < 10.3.4 Multiple Vulnerabilities
2004-06-01 00:00:00

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

41.7%

JSON
Related for VU:174790
cve1nessus1