Vulnerability Details : CVE-2007-3749
The kernel in Apple Mac OS X 10.4 through 10.4.10 does not reset the current Mach Thread Port or Thread Exception Port when executing a setuid program, which allows local users to execute arbitrary code by creating the port before launching the setuid program, then writing to the address space of the setuid process.
Vulnerability category: Execute code
Products affected by CVE-2007-3749
- cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-3749
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-3749
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST | |
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST | 2024-02-09 |
CWE ids for CVE-2007-3749
-
The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-3749
-
http://www.us-cert.gov/cas/techalerts/TA07-319A.html
Page Not Found | CISABroken Link;Third Party Advisory;US Government Resource
-
http://www.vupen.com/english/advisories/2007/3868
Webmail: access your OVH emails on ovhcloud.com | OVHcloudBroken Link;Vendor Advisory
-
http://secunia.com/advisories/27643
About Secunia Research | FlexeraBroken Link;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/38466
Apple Mac OS X kernel Mach Port privilege escalation CVE-2007-3749 Vulnerability ReportThird Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/26444
Broken Link;Third Party Advisory;VDB Entry
-
http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html
Mailing List
-
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=630
Broken Link
-
http://docs.info.apple.com/article.html?artnum=307041
Broken Link
Jump to