PT-2007-2203 · Apple · Pppd+1
Published
2007-05-24
·
Updated
2017-07-29
·
CVE-2007-0752
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
pppd in Apple Mac OS X version 10.4.8
Description
The issue allows local users to load arbitrary plugins and gain root privileges by bypassing the ownership check of the stdin file descriptor.
Recommendations
For Apple Mac OS X version 10.4.8, consider restricting access to the pppd daemon to minimize the risk of exploitation until a patch is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Macos X
Pppd