PT-2001-2540 · Apple · Macos X+1

Published

2001-10-17

Updated

2017-07-11

CVE-2001-1447

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions NetInfo Manager for Mac OS X versions 10.0 through 10.1

Description The issue allows local users to gain root privileges by opening applications using the "recent items" and "services" menus, causing the applications to run with root privileges.

Recommendations For versions 10.0 through 10.1, consider restricting access to the "recent items" and "services" menus to prevent applications from running with root privileges until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1447

Affected Products

Macos X

Netinfo Manager

PT-2001-2540 · Apple · Macos X+1

CVE-2001-1447

Related Identifiers

Affected Products

References · 7