Mac OS X DirectoryService (DS Plug-Ins) Authentication Feature Remote Privilege Escalation

2007-03-14T09:19:04
ID OSVDB:34848
Type osvdb
Reporter OSVDB
Modified 2007-03-14T09:19:04

Description

Vulnerability Description

Mac OS X contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered by an unspecified DirectoryService implementation flaw that allows an unprivileged LDAP user to change the root password. This flaw may lead to a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.

Short Description

Mac OS X contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered by an unspecified DirectoryService implementation flaw that allows an unprivileged LDAP user to change the root password. This flaw may lead to a loss of integrity.

References:

Vendor Specific Advisory URL Security Tracker: 1017751 Secunia Advisory ID:24479 Related OSVDB ID: 34855 Related OSVDB ID: 34847 Related OSVDB ID: 34854 Related OSVDB ID: 34849 Related OSVDB ID: 34850 Related OSVDB ID: 34853 Related OSVDB ID: 34845 Related OSVDB ID: 34846 Related OSVDB ID: 34851 Related OSVDB ID: 34852 News Article: http://news.com.com/Apple+megapatch+plugs+45+security+holes/2100-1002_3-6166971.html FrSIRT Advisory: ADV-2007-0930 CVE-2007-0723 CERT VU: 557064 Bugtraq ID: 22948