Apple Mac OS X contains a vulnerability in the way DiskArbitration initializes writable removable media.
The DiskArbitration Server in Apple Mac OS X tracks new disks and provides notifications announcing their availability. There is a non-specific vulnerability identified as CAN-2004-0167 in Apple Security Advisory Update 2004-02-23. This vulnerability is related to initialization of writable removable media (i.e., potentially CD-RW and DVD+RW disks).
The complete impact of this vulnerability is not yet known.
Apple has released a patch to address this vulnerability. For further details, please see the Apple Security Advisory (Security Update 2004-02-23).
Vendor| Status| Date Notified| Date Updated
Apple Computer Inc.| | -| 25 Feb 2004
If you are a vendor and your product is affected, let us know.
Group | Score | Vector
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A
This vulnerability was reported by Apple.
This document was written by Damon Morda.