ACCESS DENY.COM

Contact Us | FAQ's | Site Map

Home   |   Vulnerabilities    |   Conceptual Research    |   News   |   Editor   |   Columnist   |   Reviews
Search: Select Criteria By Vender By Product By Author	Welcome Jenie Arthor   |   My Account    |   Sign Out

Home > Alerto > Microsoft > DDS Library

Apple Mac OS X securityd May Let Local Users Gain Elevated Privileges Researched by: AccessDeny.com Wednesday, September 21, 2005  00:53 IST Print Email   Access Deny Alert ID 777 Access Deny Alert URL http://www.accessdeny.com/vulnaerailities.php?id=777 Release Date 16th September, 2005 Last Update 17th September, 2005 Impact A local user may be able to gain elevated privileges on the target system. Where: Local System Critical  (Midium) CVE Referance CAN-2005-2968 Solution Status Unpatched Software Mozilla Thunderbird 1.x   Select a product and view a complete list of all Patched/Unpatched Aceess Deny advisories affecting it.   Description: vulnerability was reported in the Apple Mac OS X securityd. A local user may be able to gain elevated privileges on the target system. The securityd Authorization Services function allows a local user to grant themselves certain privileged rights, including the ability to manipulate arbitrary files. This may allow the local user to obtain elevated privileges.   Solution: Apple has released a fix as part of Security Update 2005-008, available from the Software Update pane in System Preferences, or Apple's Software Downloads web site at: http://www.apple.com/support/downloads/ For Mac OS X v10.4.2 and Mac OS X Server v10.4.2 The download file is named: "SecUpd2005-008Ti.dmg" Its SHA-1 digest is: 9284ab3e3ed19761b74edb1afffba052f606c993 For Mac OS X v10.3.9 and Mac OS X Server v10.3.9 The download file is named: "SecUpd2005-008Pan.dmg" Its SHA-1 digest is: 65f4dde09ee46fb9e1d58259f4085d90f420fae0   Original Advisory Apple Security Advisory Vendor URL docs.info.apple.com/article.html?artnum=61798 (Links to External Site) Cause Access control error Underlying OS UNIX (Mac OS X) Reported By Apple Product Security <product-security@apple.com> Other References SA16869: http://secunia.com/advisories/16869/ Message History None   Print this Article  |  Bookmark this Article • Microsoft DDS Library Shape Control Code Execution Vulbility ... • Microsoft DDS Library Shape n Vulnerability ... • Microsoft DDS Library Shape Control Code Executi rability ... • Microsoft DDS Library Shape n Vulnerability ... • Microsoft DDS Library Shape Control Code Executi rability ...

Vulnerabilities   By Vendor   By Product   By Virson   Profile 1   Profile 2   Profile 3  Category   OS   Netowrk   Hardware   Application   Virus  Alerto News 2005-09-15 Multiple browser are vulnerable to the Dialog Origin Spoofing Vulnerability 2005-09-15 Multiple browser are vulnerable to the Dialog Origin Spoofing Vulnerability Advertisement