Vulnerabilities > CVE-2007-0117 - Local Privilege Escalation vulnerability in Apple DiskManagement Framework BOM
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |