The Mac Observer

Skip navigational links

Choose text size: Select small text. Select medium text. Select large text.

DealsOnTheWeb Daily Deal: Computer Geeks' Back to School Sale - Save Up to 80%

Mac Security Alert - Secunia Reports New, "Less Critical" Mac OS X Exploit

by , 12:25 PM EDT, July 27th, 2004

Security firm Secunia is reporting a new exploit in Mac OS X 10.3.4. The exploit is called "Apple Mac OS X Internet Connection Privilege Escalation," and basically allows local users to gain privileges on a Mac they shouldn't otherwise have. In other words, the exploit could allow a user with a non-admin account on a Mac, for instance in a school or business setting, to gain access to otherwise restricted parts of the Mac in question.

Secunia rates the exploit as "less critical," and offers a simple solution to the potential problem. From Secunia:

Description:
B-r00t has reported a vulnerability in Mac OS X, which can be exploited by malicious, local users to gain escalated privileges.

The problem is that "Internet Connect.app" creates the file "/tmp/ppp.log" in an insecure manner, which can be exploited via symlink attacks.

The vulnerability has been reported in Mac OS X 10.3.4 with "Internet Connect.app" version 1.3. Prior versions may also be affected.

Solution:
Remove "Internet Connect.app" from systems with untrusted users if it isn't needed.

According to the description, the flaw is only exploitable by users who have physical access and an account on a local Mac. As such, it isn't likely to affect Mac users in trusted environments, for instance in a single user situation, a home, or any environment where all users have admin powers.

Secunia has reported a few Mac OS X security flaws in recent months (see: New "Serious" Security Flaw Found In OS X - May 18th, 2004, Exploit May Cause Safari To Toss Its Cookies - November 26th, 2003), and criticized Apple's initial response to the flaw reported in May. Today's new vulnerability was reported to Secunia by someone going by the name 'B-r00t,' and was not a product of Secunia's own research.

Apple spokespersons were not immediately available for comment on this story. You can find the alert at Secunia's Web site.

Apple Mac OS X Internet Connection Privilege Escalation

Observer Comments

Show: Subjects Only | Full Comments
View Name:Guest
Tue Jul 27, 2004 1:32 pm Subject: Secunia/ or Chicken little
Close Name:Tiger Posts: 950 Joined: 17 Jun 2003
Tue Jul 27, 2004 4:55 pm Subject: Tiger

Shouldn't the exceptions list include LAN connections? Internet Connection.app is for creating a dialup connection if memory serves me right. I deleted it the day I set my Mac up. I delete it on every Mac I set up. It's a waste of space.


 Reply | Quote
View Name:Guest
Tue Jul 27, 2004 6:46 pm Subject: Internet Connect does more
View Name:Guest
Tue Jul 27, 2004 10:05 pm Subject: Also VPN
Comment on this Article

Show:   comments per page.   Save Settings
Guest Posts Hidden. View Them.
Back to top  Page 1 of 1    

You cannot edit your comments.   You cannot delete your comments.
Log in | Register | Having Problems? Reset TMO Cookies & Try Again
Username:   Password:   Log me on automatically each visit   

You are not logged in, and this post will appear as "Guest." Log in with your username and password from the TMO forums. If you do not have a username, you can register here.
Please note that guests are limited to including a maximum of two URLs per post.

Post A Comment
  Subject


  Your Comments



Please enter the word exactly as you see it in the image above. Registered users aren't prompted for this. Having trouble reading the image get a new one.

Recent Headlines - Updated Thursday, July 24th, 2008

Thu., 5:15 PM
Forrester: Vista is Like Ill-fated New Coke
3:35 PM
NYT: Apple's MobileMess
2:10 PM
Column: Apple and China are Incompatible
1:25 PM
Editorial - Steve Ballmer Addresses MS Employees About Apple
1:05 PM
iPodObserver - Kerio MailServer 6.5.2 Adds iPhone Push Support
12:30 PM
WSJ: MobileMe Flawed, Ragged
11:25 AM
iPodObserver - MobileMe Email: Down for the Count?
10:40 AM
Cool Waste of Time - Bloxorz
10:15 AM
Hot Forum Topic - iPhone Software 2.0 Stability
9:30 AM
iPodObserver - Mobistar: iPhone 3G Demand Outpacing Supply
8:45 AM
FontXChange 1.5 Adds Unicode 5.1 Support
8:15 AM
iPodObserver - Apple Introduces 3 New iPhone 3G Ads
 

The Mac Observer Reader Specials

  • Download Typestyler, still the Ultimate Styling Tool for Internet, Print and Video Graphics. Works great in Classic with a Native OS X Version on the way. Free Tryout: www.typestyler.com
  • OWC: NewerTech miniStack FireWire/USB 2.0 HD & Hub Up to 1.0TB of Performance Storage + FW/USB2 Powered Hubs - convenient & sleek 6.5" x 6.5" x 1.5" Featured: 500GB $169.99; 750GB $209.99; 1.0TB $339.99
  • MacPro Memory 667Mhz With Apple Spec Heat Sink 2GB $90 / 4GB $134 / 8GB $264. Click to Maximize your Macs...
  • Mac observers can now play Party Poker for Mac as well as Mac casino games by going to MacPokerOnline.com.
  • RamJet Memory: MacBook 1Gig $39, 2Gig $78, 4Gig $195! Mac Pro 2Gig $115, 4Gig $189! 500G Seagate SATA II $139! Click here

  • For the latest Apple products use Ciao a comparison website to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate cell phones.

  • Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.
  • Special Report: WWDC 2008
  • Special Report: iPhone
  • __________
  • Help TMO Grow
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!
  • New Media Expo 2008

Apple Stock Quote

  • AAPL: $159.03. Change Today: -7.23.
  • (Prices delayed up to 20 minutes.)
  • Discuss in our Apple Finance Board

Hot Topics

What's the buzz? These articles have TMO readers talking.

Top Deals From DealsOnTheWeb