Secunia
Login
|
|
CVE Reference: CVE-2007-0023 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-0023 |
|
|
Description: The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa applications attempt to notify the user. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/31676 ST 1017542 SAID Secunia Advisory: SA24198 Secunia Advisory: SA23846 OSVDB 32695 MISC http://projects.info-pull.com/moab/MOAB-22-01-2007.html CONFIRM http://docs.info.apple.com/article.html?artnum=305102 CERT-VN 315856 CERT http://www.us-cert.gov/cas/techalerts/TA07-047A.html BID 22188 APPLE http://lists.apple.com/archives/Security-announce/2007/Feb/msg00000.html |
|
| Return to the previous page. |
