3 matches found
CVE-2007-3749
CVE-2007-3749 affects Apple Mac OS X 10.4–10.4.10. The kernel fails to reset the current Mach Thread Port or Thread Exception Port when executing a setuid binary, permitting a local attacker to write into the memory of a root process by pre-creating a Mach port and then launching the setuid progr...
[Full-disclosure] iDefense Security Advisory 11.14.07: Apple Mac OS X Mach Port Inheritance Privilege Escalation Vulnerability
iDefense Security Advisory 11.14.07 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 14, 2007 I. BACKGROUND Mach ports are used to provide inter-process communication IPC facilities on Mac OS X. More information can be found on the vendor's site at the following URL...
Mac OS X < 10.4.11 Multiple Vulnerabilities (Security Update 2007-008)
The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.11 or a version of Mac OS X 10.3 which does not have Security Update 2007-008 applied. This update contains several security fixes for the following programs : - Flash Player Plugin - AppleRAID - BIND - bzip2 -...