Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1447

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-1447
Last Modified 05 Sep 2008 04:26:35
Published 17 Oct 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1447

Summary

NetInfo Manager for Mac OS X 10.0 through 10.1 allows local users to gain root privileges by opening applications using the (1) "recent items" and (2) "services" menus, which causes the applications to run with root privileges.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.0

  • Apple Mac Os X 10.0.1

  • Apple Mac Os X 10.0.2

  • Apple Mac Os X 10.0.3

  • Apple Mac Os X 10.0.4

  • Apple Mac Os X 10.1


References

CERT-VN - VU#945747

XF - macos-netinfo-root-privileges(7303)

BID - 3439

CIAC - M-007

BUGTRAQ - 20011017 Re: Mac OS X setuid root security hole

BUGTRAQ - 20011017 Mac OS X setuid root security hole


Last Updated: 27 May 2016 10:36:40