Apple Mac OS X vulnerability

Severity (1) MODERATE:

Apple MacOS X DHCP Response Root Compromise

Affected Products:

MacOS X version 10.2-10.3

MacOS X Server version 10.2-10.3

Description:

MacOS X is reported to contain a vulnerability in handling DHCP responses. The problem arises because the MacOS X trusts LDAP and NetInfo server information provided in a DHCP response from any DHCP server. The flaw can be exploited by an attacker running a malicious DHCP server to obtain root privileges on MacOS X systems. The attacker may need to wait for the MacOS X system to reboot before the vulnerable settings come into effect. The posted advisory shows how to configure a malicious DHCP and LDAP server to exploit the flaw. Note that MacOS X attempts to negotiate DHCP on all available interfaces including the wireless interfaces.

Status:

No fixes are available yet. Vendor has released possible workarounds.

 Printable Version

News
Virus and Security News
Atlantech recommends CounterSpy
eWeek says ""CounterSpy is the most affordable and richly featured product we reviewed... Sunbelt's CounterSpy Enterprise provides the best mix of management, reporting and cleaning capabilities we've seen, at the most affordable price. With its CounterSpy Enterprise solution, Sunbelt exhibits its experience in designing enterprise-class software. CounterSpy Enterprise has the best reporting tools we've seen by far, offering a wide array of high-level and heavily detailed reports that can be organized by date ranges."
Consulting >>
Introduction to Security
An information system with a weak security foundation will eventually experience a security breach. Examples of security breaches include data loss, data disclosure, loss of system availability, corruption of data, and so forth. Depending on the information system and the severity of the breach, the results could vary from embarrassment, to loss of revenue, to loss of life.
Consulting >>
More Internet Bank Account Fraud!
Fraudsters have developed phishing emails capable of automatically stealing bank log-in details
Consulting >>
IE cross-zone privilege escalation vulnerability
Active exploitation of a cross-zone privilege escalation vulnerability in Internet Explorer has been observed.
Consulting >>
Not-so-witty Worm Destroys System Data Through BlackIce Firewalls
A fast-spreading worm got loose on the Internet Saturday, crawled through a vulnerability in Internet Security Systems' BlackIce firewall, has infected between 10,000 and 50,000 systems worldwide, and can trash infected hard drives.
Support and Maintenance >>
2004 worms (well 4 anyway!)
Virus generates massive support traffic to helpdesks - confusion abounds....
Support and Maintenance >>
Apple Mac OS X vulnerability
Apple MacOS X DHCP Response Root Compromise
Consulting >>
Breaking into Microsoft - "Tougher than you think!"
Microsoft repels 2500 to 3000 electronic attacks every day--or almost 100,000 a month.
Consulting >>
Worm Alert
Don't be caught by the new "Credit Card Worm Scam"!
Support and Maintenance >>
© Copyright Atlantech 2003. Powered by Cooperate's Content Management Server and the .Net Framework.