Multiple Apple Mac OS X Local And Remote Vulnerabilities
BID:9731
Info
Multiple Apple Mac OS X Local And Remote Vulnerabilities
| Bugtraq ID: | 9731 |
| Class: | Unknown |
| CVE: |
CVE-2004-0165 CVE-2004-0164 CVE-2004-0168 CVE-2004-0166 CVE-2004-0089 CVE-2004-0167 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Feb 24 2004 12:00AM |
| Updated: | Jul 12 2009 03:06AM |
| Credit: | The vendor has credited multiple sources with discovery of these issues, including Dave G. of @stake and iDEFENSE Labs. |
| Vulnerable: |
Apple Mac OS X Server 10.3.2 Apple Mac OS X Server 10.3.1 Apple Mac OS X Server 10.3 Apple Mac OS X Server 10.2.8 Apple Mac OS X Server 10.2.7 Apple Mac OS X Server 10.2.6 Apple Mac OS X Server 10.2.5 Apple Mac OS X Server 10.2.4 Apple Mac OS X Server 10.2.3 Apple Mac OS X Server 10.2.2 Apple Mac OS X Server 10.2.1 Apple Mac OS X Server 10.2 Apple Mac OS X Server 10.1.5 Apple Mac OS X Server 10.1.4 Apple Mac OS X Server 10.1.3 Apple Mac OS X Server 10.1.2 Apple Mac OS X Server 10.1.1 Apple Mac OS X Server 10.1 Apple Mac OS X Server 10.0 Apple Mac OS X 10.3.2 Apple Mac OS X 10.3.1 Apple Mac OS X 10.3 Apple Mac OS X 10.2.8 Apple Mac OS X 10.2.7 Apple Mac OS X 10.2.6 Apple Mac OS X 10.2.5 Apple Mac OS X 10.2.4 Apple Mac OS X 10.2.3 Apple Mac OS X 10.2.2 Apple Mac OS X 10.2.1 Apple Mac OS X 10.2 Apple Mac OS X 10.1.5 Apple Mac OS X 10.1.4 Apple Mac OS X 10.1.3 Apple Mac OS X 10.1.2 Apple Mac OS X 10.1.1 Apple Mac OS X 10.1 Apple Mac OS X 10.1 Apple Mac OS X 10.0.4 Apple Mac OS X 10.0.3 Apple Mac OS X 10.0.2 Apple Mac OS X 10.0.1 Apple Mac OS X 10.0 3 Apple Mac OS X 10.0 |
| Not Vulnerable: | |
Discussion
Multiple Apple Mac OS X Local And Remote Vulnerabilities
Apple has reported multiple previously known and newly discovered security vulnerabilities in Mac OS X (Client and Server).
The individual security issues include:
Improved notification logging (CAN-2004-0168).
Undisclosed DiskArbitration security improvements for handling writeable removable media (CAN-2004-0167).
Undisclosed IPSec key exchange issue (CAN-2004-0164).
pppd daemon format string vulnerability described in BID 9730(Apple Mac OS X PPPD Format String Memory Disclosure Vulnerability) (CAN-2004-0165).
Unspecified security vulnerability (CAN-2004-0089) in QuickTime Streaming Server that is related to handling of request data.
URI display issue (CAN-2004-0166) in the Safari web browser.
Finally 3 vulnerabilities in tcpdump. These issues are described in BID 9507(TCPDump ISAKMP Decoding Routines Denial Of Service Vulnerability), BID 7090(TCPDump Malformed RADIUS Packet Denial Of Service Vulnerability) and BID 9423(TCPDump ISAKMP Decoding Routines Multiple Remote Buffer Overflow Vulnerabilities).
These issues are currently undergoing further analysis. Where it is appropriate, each individual issue will be assigned a unique BID and any existing BIDs will be updated accordingly to reflect the release of this Security Update.
Apple has reported multiple previously known and newly discovered security vulnerabilities in Mac OS X (Client and Server).
The individual security issues include:
Improved notification logging (CAN-2004-0168).
Undisclosed DiskArbitration security improvements for handling writeable removable media (CAN-2004-0167).
Undisclosed IPSec key exchange issue (CAN-2004-0164).
pppd daemon format string vulnerability described in BID 9730(Apple Mac OS X PPPD Format String Memory Disclosure Vulnerability) (CAN-2004-0165).
Unspecified security vulnerability (CAN-2004-0089) in QuickTime Streaming Server that is related to handling of request data.
URI display issue (CAN-2004-0166) in the Safari web browser.
Finally 3 vulnerabilities in tcpdump. These issues are described in BID 9507(TCPDump ISAKMP Decoding Routines Denial Of Service Vulnerability), BID 7090(TCPDump Malformed RADIUS Packet Denial Of Service Vulnerability) and BID 9423(TCPDump ISAKMP Decoding Routines Multiple Remote Buffer Overflow Vulnerabilities).
These issues are currently undergoing further analysis. Where it is appropriate, each individual issue will be assigned a unique BID and any existing BIDs will be updated accordingly to reflect the release of this Security Update.
Exploit / POC
Multiple Apple Mac OS X Local And Remote Vulnerabilities
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Multiple Apple Mac OS X Local And Remote Vulnerabilities
Solution:
Apple has released a Security Update to address these issues in various versions of Mac OS X. These fixes may be applied manually or via the Software Update pane in System Preferences.
Apple Mac OS X 10.2.8
Apple Mac OS X Server 10.2.8
Apple Mac OS X 10.3.2
Apple Mac OS X Server 10.3.2
Solution:
Apple has released a Security Update to address these issues in various versions of Mac OS X. These fixes may be applied manually or via the Software Update pane in System Preferences.
Apple Mac OS X 10.2.8
-
Apple SecUpd2004-02-23Jag.dmg
http://www.info.apple.com/kbnum/n120277
Apple Mac OS X Server 10.2.8
-
Apple SecUpdSrvr2004-02-23Jag.dmg
http://www.info.apple.com/kbnum/n120322
Apple Mac OS X 10.3.2
-
Apple SecUpd2004-02-23Pan.dmg
http://www.info.apple.com/kbnum/n120323
Apple Mac OS X Server 10.3.2
-
Apple SecUpdSrvr2004-02-23Pan.dmg
http://www.info.apple.com/kbnum/n120324
References
Multiple Apple Mac OS X Local And Remote Vulnerabilities
References:
References: