Apple Mac OS X Disk Utility Privilege Escalation Vulnerability

Bugtraq ID:	30492
Class:	Design Error
CVE:	CVE-2008-2324
Remote:	No
Local:	Yes
Published:	Jul 31 2008 12:00AM
Updated:	Aug 01 2008 05:17PM
Credit:	Anton Rang and Brian Timares
Vulnerable:	Apple Mac OS X Server 10.4.11 Apple Mac OS X Server 10.4.10 Apple Mac OS X Server 10.4.9 Apple Mac OS X Server 10.4.8 Apple Mac OS X Server 10.4.7 Apple Mac OS X Server 10.4.6 Apple Mac OS X Server 10.4.5 Apple Mac OS X Server 10.4.4 Apple Mac OS X Server 10.4.3 Apple Mac OS X Server 10.4.2 Apple Mac OS X Server 10.4.1 Apple Mac OS X Server 10.4 Apple Mac OS X 10.4.11 Apple Mac OS X 10.4.10 Apple Mac OS X 10.4.9 Apple Mac OS X 10.4.8 Apple Mac OS X 10.4.7 Apple Mac OS X 10.4.6 Apple Mac OS X 10.4.5 Apple Mac OS X 10.4.4 Apple Mac OS X 10.4.3 Apple Mac OS X 10.4.2 Apple Mac OS X 10.4.1 Apple Mac OS X 10.4
Not Vulnerable:

Apple Mac OS X Disk Utility Privilege Escalation Vulnerability

Apple Mac OS X is prone to a privilege-escalation vulnerability that affects Disk Utility.

An unprivileged local user may exploit this issue to run commands with system-level privileges.

The following versions are affected:

Mac OS X v10.4.11 and prior
Mac OS X Server v10.4.11 and prior

This issue does not affect systems running Mac OS X v10.5 and later.

NOTE: This issue was previously covered in BID 30483 (Apple Mac OS X 2008-005 Multiple Security Vulnerabilities) but has been given its own record to better document the vulnerability.

Apple Mac OS X Disk Utility Privilege Escalation Vulnerability

Attackers will likely use standard OS commands to exploit this issue.

Apple Mac OS X Disk Utility Privilege Escalation Vulnerability

Solution:
The vendor has released an advisory and updates. Please see the referenced advisory for more information.

Apple Mac OS X Disk Utility Privilege Escalation Vulnerability

References:

• Mac OS X Homepage (Apple)