Published: 09/01/2007 Updated: 08/03/2011

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows malicious users to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x 10.4.8
apple mac os x server 10.4.8

#!/usr/bin/ruby # (c) 2006 LMH <lmh [at] info-pullcom> # Kevin Finisterre <kf_lists [at] digitalmunitioncom> # # Thanks to The French Connection for bringing this in-the-wild 0-day to # our attention If /tmp/ps2 exists on your system, you've been pwned already # Thanks to the original authors of the exploit ('meow') You kn ...

#!/usr/bin/ruby # (c) 2006 LMH <lmh [at] info-pullcom> (code from the other exploit, porting) # Kevin Finisterre <kf_lists [at] digitalmunitioncom> (crontab rock and roll) # # Second exploit for MOAB-05-01-2007, uses crontab much more simple than the other one # And works like a charm require 'fileutils' EVIL_CO ...

NVD-CWE-Other http://projects.info-pull.com/moab/MOAB-05-01-2007.html http://www.securityfocus.com/bid/21899 http://secunia.com/advisories/23653 http://osvdb.org/31167 http://www.vupen.com/english/advisories/2007/0074 https://nvd.nist.gov https://www.exploit-db.com/exploits/3087/

CVE-2007-0117

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect