|
|
CVE Reference: CVE-2007-0752 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-0752 |
|
|
Description: The PPP daemon (pppd) in Apple Mac OS X 10.4.8 checks ownership of the stdin file descriptor to determine if the invoker has sufficient privileges, which allows local users to load arbitrary plugins and gain root privileges by bypassing this check. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/34503 ST 1018124 SAID Secunia Advisory: SA25402 OSVDB 35144 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=537 CONFIRM http://docs.info.apple.com/article.html?artnum=305530 BID 24144 APPLE http://lists.apple.com/archives/security-announce/2007/May/msg00004.html |
|
| Return to the previous page. |
