Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-0182

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2011-0182
Last Modified 13 Feb 2012 11:03:22
Published 22 Mar 2011 10:00:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2011-0182

Summary

The i386_set_ldt system call in the kernel in Apple Mac OS X before 10.6.7 does not properly handle call gates, which allows local users to gain privileges via vectors involving the creation of a call gate entry.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.6.0

  • Apple Mac Os X 10.6.1

  • Apple Mac Os X 10.6.2

  • Apple Mac Os X 10.6.3

  • Apple Mac Os X 10.6.4

  • Apple Mac Os X 10.6.5

  • Apple Mac Os X 10.6.6

  • Apple Mac Os X Server 10.6.0

  • Apple Mac Os X Server 10.6.1

  • Apple Mac Os X Server 10.6.2

  • Apple Mac Os X Server 10.6.3

  • Apple Mac Os X Server 10.6.4

  • Apple Mac Os X Server 10.6.5

  • Apple Mac Os X Server 10.6.6


References

CONFIRM - http://support.apple.com/kb/HT4581

APPLE - APPLE-SA-2011-03-21-1

SREASON - 8402

Related Patches

Apple 2011-03-21 Mac OS X 10.6.7 Combo Update

Apple 2011-03-21 Mac OS X 10.6.7 Update

Apple 2011-03-21 Mac OS X Server 10.6.7 Combo Update

Apple 2011-03-21 Mac OS X Server 10.6.7 Update


Last Updated: 27 May 2016 10:58:14