netinfo software vulnerabilities
vulnerabilities.aspcode.net
Searching netinfo software vulnerabilities
NetInfo Manager for Mac OS X 10.0 through 10.1
Manager
|
NetInfo
|
Mac
|
NetInfo Manager for Mac OS X 10.0 through 10.1 allows local users to gain root privileges by opening applications using the (1) "recent items" and (2) "services" menus, which causes the applications to run with root privileges.
Directory Services in Apple Mac OS X 10.0.2, 10
Directory
|
Services
|
Apple
|
Mac
|
Directory Services in Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 and Apple Mac OS X Server 10.2 through 10.3.2 accepts authentication server information from unknown LDAP or NetInfo sources as provided by a malicious DHCP server, which allows remote attackers to gain privileges.
NetInfo Manager on Mac OS X 10.3.x through 10.3
through
|
Manager
|
NetInfo
|
103x
|
Mac
|
NetInfo Manager on Mac OS X 10.3.x through 10.3.5, after an initial root login, reports the root account as being disabled, even when it has not.
Buffer overflow in the Netinfo Setup Tool (NeST
overflow
|
Netinfo
|
Buffer
|
Setup
|
Tool
|
Buffer overflow in the Netinfo Setup Tool (NeST) allows local users to execute arbitrary code.
PADL MigrationTools 46, when a failure occurs,
world-readable
|
/tmp/nis$$ldif
|
MigrationTools
|
/etc/shadow
|
information
|
temporary
|
sensitive
|
properly
|
possibly
|
contents
|
failure
|
managed
|
occurs
|
stores
|
which
|
files
|
other
|
PADL
|
file
|
not
|
PADL MigrationTools 46, when a failure occurs, stores contents of /etc/shadow in a world-readable /tmp/nis.$$.ldif file, and possibly other sensitive information in other temporary files, which are not properly managed by (1) migrate_all_online.sh, (2) migrate_all_offline.sh, (3) migrate_all_netinfo_online.sh, (4) migrate_all_netinfo_offline.sh, (5) migrate_all_nis_online.sh, (6) migrate_all_nis_offline.sh, (7) migrate_all_nisplus_online.sh, and (8) migrate_all_nisplus_offline.sh.
PADL MigrationTools 46 creates temporary files
MigrationTools
|
insecurely
|
arbitrary
|
temporary
|
overwrite
|
properly
|
symlink
|
creates
|
created
|
attack
|
allows
|
which
|
files
|
local
|
users
|
PADL
|
via
|
not
|
PADL MigrationTools 46 creates temporary files insecurely, which allows local users to overwrite arbitrary files via a symlink attack on the temporary files, which are not properly created by (1) migrate_all_online.sh, (2) migrate_all_offline.sh, (3) migrate_all_netinfo_online.sh, (4) migrate_all_netinfo_offline.sh, (5) migrate_all_nis_online.sh, (6) migrate_all_nis_offline.sh, (7) migrate_all_nisplus_online.sh, and (8) migrate_all_nisplus_offline.sh.
User interface inconsistency in Workgroup Manag
inconsistency
|
Workgroup
|
interface
|
Manager
|
Apple
|
User
|
Mac
|
User interface inconsistency in Workgroup Manager in Apple Mac OS X 10.4 through 10.4.7 appears to allow administrators to change the authentication type from crypt to ShadowHash passwords for accounts in a NetInfo parent, when such an operation is not actually supported, which could result in less secure password management than intended.
Software vulnerabilities results 1 to 8 of 8
Page:
1