CVE Details for CVE: CVE-2001-1447
Summary
NetInfo Manager for Mac OS X 10.0 through 10.1 allows local users to gain root privileges by opening applications using the (1) "recent items" and (2) "services" menus, which causes the applications to run with root privileges.
| Timestamps | |
|---|---|
| Last major update | 11-07-2017 - 01:29 |
| Published | 17-10-2001 - 04:00 |
| Last modified | 11-07-2017 - 01:29 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-10/0121.html
- http://archives.neohapsis.com/archives/bugtraq/2001-10/0130.html
- http://www.kb.cert.org/vuls/id/945747
- http://www.ciac.org/ciac/bulletins/m-007.shtml
- http://www.securityfocus.com/bid/3439
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7303
Vulnerable Configurations
-
cpe:2.3:o:apple:mac_os_x:10.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.0.1:*:*:*:*:*:*:*
-
cpe:2.3:o:apple:mac_os_x:10.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.0.2:*:*:*:*:*:*:*
-
cpe:2.3:o:apple:mac_os_x:10.0.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.0.3:*:*:*:*:*:*:*
-
cpe:2.3:o:apple:mac_os_x:10.0.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.0.4:*:*:*:*:*:*:*
-
cpe:2.3:o:apple:mac_os_x:10.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.1:*:*:*:*:*:*:*
-
cpe:2.3:o:apple:mac_os_x:10.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.0:*:*:*:*:*:*:*
CWE
CVSS
Base
7.2
Impact
10.0
Exploitability
3.9
Access
| Vector | Complexity | Authentication |
|---|---|---|
| LOCAL | LOW | NONE |
Impact
| Confidentiality | Integrity | Availability |
|---|---|---|
| COMPLETE | COMPLETE | COMPLETE |
CVSS3
None