Mac OS X Dashboard Directory Permission Race Condition Privilege Escalation

2005-06-02T00:00:00
ID OSVDB:17272
Type osvdb
Reporter Michael Haller(info@cilly.com)
Modified 2005-06-02T00:00:00

Description

Vulnerability Description

Mac OS X contains a flaw that may allow a malicious local user to create arbitrary files on the system. The issue is due to the system cache folder and Dashboard system widgets creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files and possibly gain administrative privileges, resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.

Short Description

Mac OS X contains a flaw that may allow a malicious local user to create arbitrary files on the system. The issue is due to the system cache folder and Dashboard system widgets creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files and possibly gain administrative privileges, resulting in a loss of integrity.

References:

Vendor Specific Advisory URL Security Tracker: 1014146 Secunia Advisory ID:15481 ISS X-Force ID: 20955 CVE-2005-1727