Search...

CVE-2002-1266

2002-12-11T05:00:00

ID CVE-2002-1266
Type cve
Reporter cve@mitre.org
Modified 2017-10-10T01:30:00

Description

Mac OS X 10.2.2 allows local users to gain privileges by mounting a disk image file that was created on another system, aka "Local User Privilege Elevation via Disk Image File."

JSON Vulners Source

Initial Source

{"id": "CVE-2002-1266", "bulletinFamily": "NVD", "title": "CVE-2002-1266", "description": "Mac OS X 10.2.2 allows local users to gain privileges by mounting a disk image file that was created on another system, aka \"Local User Privilege Elevation via Disk Image File.\"", "published": "2002-12-11T05:00:00", "modified": "2017-10-10T01:30:00", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1266", "reporter": "cve@mitre.org", "references": ["http://www.osvdb.org/7057", "http://www.info.apple.com/usen/security/security_updates.html", "https://exchange.xforce.ibmcloud.com/vulnerabilities/10818"], "cvelist": ["CVE-2002-1266"], "type": "cve", "lastseen": "2019-05-29T18:07:39", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "a5d88026162187920de8186c6e9a40ca"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "f6ec7e253e6a655870c4bad9abfe2b01"}, {"key": "cpe23", "hash": "dec627343faebb86a5e7e4ac2638d6c2"}, {"key": "cvelist", "hash": "d23086a98a8b412d30ed501cc1483bd3"}, {"key": "cvss", "hash": "6f6410364e4cee78bd47ed1fc3d8dd5b"}, {"key": "cvss2", "hash": "4831734af99595d86671882c27d79595"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "dbe6e41394cd1487a7939372c907f701"}, {"key": "href", "hash": "6c5ebfc28647725cd80642613d647935"}, {"key": "modified", "hash": "8fb0f78ba2f86384079c6a08edb3203e"}, {"key": "published", "hash": "d7d41d4d5712528acf545ba92c65562c"}, {"key": "references", "hash": "e7188ba09106ef50d3502e181f174d9f"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "e8d4adacc2ca1b86e5ee61e7182d6cc2"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "63b960b13186180bf1646a165b46f02a76e2998a314bb0c953a0d5633765c334", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:7057"]}], "modified": "2019-05-29T18:07:39"}, "score": {"value": 5.9, "vector": "NONE", "modified": "2019-05-29T18:07:39"}, "vulnersScore": 5.9}, "objectVersion": "1.3", "cpe": ["cpe:/o:apple:mac_os_x:10.2.2", "cpe:/a:apple:mac_os_x:10.2.2"], "affectedSoftware": [{"name": "apple mac_os_x", "operator": "eq", "version": "10.2.2"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"]}

{"osvdb": [{"lastseen": "2017-04-28T13:20:02", "bulletinFamily": "software", "description": "## Vulnerability Description\nMac OS X contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when opening a disk image file that was created by another computer with administrator level privileges. No further details have been provided.\n## Solution Description\nUpgrade to version 10.2.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nMac OS X contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when opening a disk image file that was created by another computer with administrator level privileges. No further details have been provided.\n## References:\nVendor URL: http://www.apple.com/macosx/\nVendor Specific Solution URL: http://docs.info.apple.com/article.html?artnum=25631\nKeyword: 25631\nISS X-Force ID: 10818\n[CVE-2002-1266](https://vulners.com/cve/CVE-2002-1266)\n", "modified": "2002-11-04T00:00:00", "published": "2002-11-04T00:00:00", "id": "OSVDB:7057", "href": "https://vulners.com/osvdb/OSVDB:7057", "title": "Mac OS X Disk Image Mount Privilege Escalation", "type": "osvdb", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}