Apple Mac OS X contains a vulnerability in DiskArbitration when initializing writable removable media

2004-02-25T00:00:00
ID VU:578886
Type cert
Reporter CERT
Modified 2004-03-19T16:55:00

Description

Overview

Apple Mac OS X contains a vulnerability in the way DiskArbitration initializes writable removable media.

Description

The DiskArbitration Server in Apple Mac OS X tracks new disks and provides notifications announcing their availability. There is a non-specific vulnerability identified as CAN-2004-0167 in Apple Security Advisory Update 2004-02-23. This vulnerability is related to initialization of writable removable media (i.e., potentially CD-RW and DVD+RW disks).


Impact

The complete impact of this vulnerability is not yet known.


Solution

Apply Patch

Apple has released a patch to address this vulnerability. For further details, please see the Apple Security Advisory (Security Update 2004-02-23).


Vendor Information

578886

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Vendor has issued information

__ Sort by: Status Alphabetical

Expand all

Affected Unknown __ Unaffected

Javascript is disabled. Click here to view vendors.

__ Apple Computer Inc.

Updated: February 25, 2004

Status

__ Vulnerable

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Please refer to the Apple Security Advisory.

If you have feedback, comments, or additional information about this vulnerability, please send us email.

CVSS Metrics

Group | Score | Vector
---|---|---
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | | N/A

References

  • <http://www.apple.com/support/security/security_updates.html>
  • <http://secunia.com/advisories/10959/>

Credit

This vulnerability was reported by Apple.

This document was written by Damon Morda.

Other Information

CVE IDs: | CVE-2004-0167
---|---
Date Public: | 2004-02-24
Date First Published: | 2004-02-25
Date Last Updated: | 2004-03-19 16:55 UTC
Document Revision: | 13