Vulnerabilities > CVE-2005-1335 - Local Security vulnerability in Mac OS X Server

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

apple

nessus

NVD

Published: 2005-05-04

Updated: 2008-09-05

Summary

Unknown vulnerability in Mac OS X 10.3.9 allows local users to gain privileges via (1) chfn, (2) chpass, and (3) chsh, which "use external helper programs in an insecure manner."

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple MAC OS X 10.3.9 Apple MAC OS X Server 10.3.9	2

Nessus

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_SECUPD2005-005.NASL
description	The remote host is missing Security Update 2005-005. This security update contains fixes for the following applications : - Apache - AppKit - AppleScript - Bluetooth - Directory Services - Finder - Foundation - HelpViewer - LDAP - libXpm - lukemftpd - NetInfo - ServerAdmin - sudo - Terminal - VPN These programs have multiple vulnerabilities that could allow a remote attacker to execute arbitrary code.
last seen	2020-06-01
modified	2020-06-02
plugin id	18189
published	2005-05-03
reporter	This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/18189
title	Mac OS X Multiple Vulnerabilities (Security Update 2005-005)

Summary

Vulnerable Configurations

Nessus

References