Vulnerabilities > CVE-2004-0824 - Symbolic Link vulnerability in Apple PPPDialer Insecure Log File Creation
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
PPPDialer for Mac OS X 10.2.8 through 10.3.5 allows local users to overwrite system files via a symlink attack on PPPDialer log files.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 7 |
Exploit-Db
description | Mac OS X Panther Internet Connect Local Root Exploit. CVE-2004-0824. Local exploit for osx platform |
id | EDB-ID:367 |
last seen | 2016-01-31 |
modified | 2004-07-28 |
published | 2004-07-28 |
reporter | B-r00t |
source | https://www.exploit-db.com/download/367/ |
title | Mac OS X Panther Internet Connect Local Root Exploit |
Nessus
NASL family | MacOS X Local Security Checks |
NASL id | MACOSX_SECUPD20040907.NASL |
description | The remote host is missing Security Update 2004-09-07. This security update fixes the following components : - CoreFoundation - IPSec - Kerberos - libpcap - lukemftpd - NetworkConfig - OpenLDAP - OpenSSH - PPPDialer - rsync - Safari - tcpdump These applications contain multiple vulnerabilities that may allow a remote attacker to execute arbitrary code. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 14676 |
published | 2004-09-08 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/14676 |
title | Mac OS X Multiple Vulnerabilities (Security Update 2004-09-07) |
code |
|