[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

252097

 
 

909

 
 

196747

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-0724Date: (C)2007-03-13   (M)2023-12-22


The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.9
Exploit Score: 3.4
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1017751
SECTRACK-1017942
BID-22948
SECUNIA-24479
SECUNIA-24966
OSVDB-34855
ADV-2007-0930
ADV-2007-1470
APPLE-SA-2007-03-13
APPLE-SA-2007-04-19
TA07-072A
TA07-109A
http://docs.info.apple.com/article.html?artnum=305214
http://docs.info.apple.com/article.html?artnum=305391
macos-hid-privilege-escalation(32973)

CPE    19
cpe:/o:apple:mac_os_x_server:10.4.7
cpe:/o:apple:mac_os_x:10.4
cpe:/o:apple:mac_os_x_server:10.4.6
cpe:/o:apple:mac_os_x:10.3.9
...

© SecPod Technologies