BID:21272

Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability

Info

Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability

Bugtraq ID:	21272
Class:	Boundary Condition Error
CVE:
Remote:	No
Local:	Yes
Published:	Nov 24 2006 12:00AM
Updated:	Nov 28 2006 04:25AM
Credit:	LMH <[email protected]> is credited with the discovery of this vulnerability.
Vulnerable:	Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8

Not Vulnerable:

Discussion

Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability

Apple Mac OS X is prone to privilege-escalation vulnerability. This issue occurs when the operating system fails to handle specially crafted binaries.

A successful exploit would allow a local attacker to execute arbitrary code with kernel-level privileges. A successful exploit would lead to the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.

Exploit / POC

Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability

The following proof of concept demonstrates this issue.

/data/vulnerabilities/exploits/MOKB-23-11-2006.bz2

Solution / Fix

Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

References

Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability

References:

Mac OS X Homepage (Apple)
MOKB-23-11-2006: Mac OS X Mach-O Binary Loading Memory Corruption (LMH)