PT-2005-3597 · Apple · Macos X

Ilja Van Sprundel

Published

2005-12-31

Updated

2018-10-19

CVE-2005-2713

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Mac OS X versions 10.3.x through 10.3.8 Mac OS X versions 10.4.x through 10.4.4

Description The issue allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option. This is related to the passwd functionality in Directory Services.

Recommendations For Mac OS X versions 10.3.x through 10.3.8, update to version 10.3.9 or later. For Mac OS X versions 10.4.x through 10.4.4, update to version 10.4.5 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2713

Affected Products

Macos X

PT-2005-3597 · Apple · Macos X

CVE-2005-2713

Related Identifiers

Affected Products

References · 13