Sign-up

ID

VAR-200403-0024


CVE

CVE-2004-0089


TITLE

Apple Mac OS X TruBlueEnvironment Local Buffer Overflow Vulnerability

Trust: 0.9

sources: BID: 9509 // CNNVD: CNNVD-200403-015

DESCRIPTION

Buffer overflow in TruBlueEnvironment in Mac OS X 10.3.x and 10.2.x allows local users to gain privileges via a long environment variable. apple's Apple Mac OS X Exists in unspecified vulnerabilities.None. Apple has reported multiple previously known and newly discovered security vulnerabilities in Mac OS X (Client and Server). The individual security issues include: Improved notification logging (CAN-2004-0168). Undisclosed DiskArbitration security improvements for handling writeable removable media (CAN-2004-0167). Undisclosed IPSec key exchange issue (CAN-2004-0164). pppd daemon format string vulnerability described in BID 9730(Apple Mac OS X PPPD Format String Memory Disclosure Vulnerability) (CAN-2004-0165). Unspecified security vulnerability (CAN-2004-0089) in QuickTime Streaming Server that is related to handling of request data. URI display issue (CAN-2004-0166) in the Safari web browser. Finally 3 vulnerabilities in tcpdump. These issues are described in BID 9507(TCPDump ISAKMP Decoding Routines Denial Of Service Vulnerability), BID 7090(TCPDump Malformed RADIUS Packet Denial Of Service Vulnerability) and BID 9423(TCPDump ISAKMP Decoding Routines Multiple Remote Buffer Overflow Vulnerabilities). These issues are currently undergoing further analysis. Where it is appropriate, each individual issue will be assigned a unique BID and any existing BIDs will be updated accordingly to reflect the release of this Security Update. The issue has been reported to exist due to a lack of sufficient boundary checks performed on data contained in Environment variables, before they are copied into a reserved buffer in TruBlueEnvironment stack based memory. It should be noted that this vulnerability was originally described as an unspecified issue in 9504. It is now being assigned a unique BID. TruBlueEnvironment is installed with the setuid root attribute by default

Trust: 3.33

sources: NVD: CVE-2004-0089 // CERT/CC: VU#902374 // JVNDB: JVNDB-2004-000762 // BID: 9731 // BID: 9509 // BID: 9504 // VULHUB: VHN-8519 // VULMON: CVE-2004-0089

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.2.8

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.3.9

Trust: 1.6

vendor:applemodel:mac osscope:eqversion:x10.2.5

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.1

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.1.1

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.5

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.3.2

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2.8

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.1.1

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.3.2

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.1.4

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.8

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.1.3

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.1.4

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2.4

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.1.3

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2.2

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.4

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.2

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.1.2

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.1.2

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2.6

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.1.5

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.6

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2.3

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.1.5

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.3

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.3

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2.7

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.3.1

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.3

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.2.1

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.7

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.3.1

Trust: 0.9

vendor:applemodel:mac os serverscope:eqversion:x10.2.1

Trust: 0.9

vendor:applemodel:mac osscope:eqversion:x10.1

Trust: 0.9

vendor:apple computermodel: - scope: - version: -

Trust: 0.8

vendor:アップルmodel:apple mac os xscope:eqversion:10.2.8

Trust: 0.8

vendor:アップルmodel:apple mac os xscope:eqversion: -

Trust: 0.8

vendor:アップルmodel:apple mac os xscope:eqversion:10.3.9

Trust: 0.8

vendor:applemodel:mac osscope:eqversion:x10.0.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0.4

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.0

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0.2

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0.3

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.03

Trust: 0.3

sources: CERT/CC: VU#902374 // BID: 9731 // BID: 9509 // BID: 9504 // JVNDB: JVNDB-2004-000762 // CNNVD: CNNVD-200403-015 // NVD: CVE-2004-0089

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2004-0089
value: MEDIUM

Trust: 1.0

CARNEGIE MELLON: VU#902374
value: 9.56

Trust: 0.8

NVD: CVE-2004-0089
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-200403-015
value: MEDIUM

Trust: 0.6

VULHUB: VHN-8519
value: MEDIUM

Trust: 0.1

VULMON: CVE-2004-0089
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2004-0089
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-8519
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CERT/CC: VU#902374 // VULHUB: VHN-8519 // VULMON: CVE-2004-0089 // JVNDB: JVNDB-2004-000762 // CNNVD: CNNVD-200403-015 // NVD: CVE-2004-0089

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

problemtype:others (CWE-Other) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2004-000762 // NVD: CVE-2004-0089

THREAT TYPE

local

Trust: 0.9

sources: BID: 9509 // CNNVD: CNNVD-200403-015

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 9509 // CNNVD: CNNVD-200403-015

PATCH

title:lists.apple.com (msg00000)url:http://lists.apple.com/archives/security-announce/2004/Jan/msg00000.html

Trust: 0.8

sources: JVNDB: JVNDB-2004-000762

EXTERNAL IDS

db:NVDid:CVE-2004-0089

Trust: 4.3

db:CERT/CCid:VU#902374

Trust: 3.4

db:BIDid:9509

Trust: 2.9

db:OSVDBid:6821

Trust: 1.8

db:JVNDBid:JVNDB-2004-000762

Trust: 0.8

db:CNNVDid:CNNVD-200403-015

Trust: 0.7

db:APPLEid:APPLE-SA-2004-01-26

Trust: 0.6

db:XFid:14968

Trust: 0.6

db:ATSTAKEid:A012704-1

Trust: 0.6

db:BIDid:9731

Trust: 0.3

db:BIDid:9504

Trust: 0.3

db:VULHUBid:VHN-8519

Trust: 0.1

db:VULMONid:CVE-2004-0089

Trust: 0.1

sources: CERT/CC: VU#902374 // VULHUB: VHN-8519 // VULMON: CVE-2004-0089 // BID: 9731 // BID: 9509 // BID: 9504 // JVNDB: JVNDB-2004-000762 // CNNVD: CNNVD-200403-015 // NVD: CVE-2004-0089

REFERENCES

url:http://www.atstake.com/research/advisories/2004/a012704-1.txt

Trust: 2.9

url:http://www.securityfocus.com/bid/9509

Trust: 2.7

url:http://www.kb.cert.org/vuls/id/902374

Trust: 2.7

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/14968

Trust: 2.0

url:http://lists.apple.com/archives/security-announce/2004/jan/msg00000.html

Trust: 1.8

url:http://www.osvdb.org/6821

Trust: 1.8

url:http://docs.info.apple.com/article.html?artnum=61798

Trust: 0.8

url:http://www.atstake.com/research/advisories/2004/a012704-1.txt

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2004-0089

Trust: 0.8

url:http://xforce.iss.net/xforce/xfdb/14968

Trust: 0.6

url:https://cwe.mitre.org/data/definitions/.html

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

sources: CERT/CC: VU#902374 // VULHUB: VHN-8519 // VULMON: CVE-2004-0089 // BID: 9509 // JVNDB: JVNDB-2004-000762 // CNNVD: CNNVD-200403-015 // NVD: CVE-2004-0089

CREDITS

Dave G※ daveg@atstake.com

Trust: 0.6

sources: CNNVD: CNNVD-200403-015

SOURCES

db:CERT/CCid:VU#902374
db:VULHUBid:VHN-8519
db:VULMONid:CVE-2004-0089
db:BIDid:9731
db:BIDid:9509
db:BIDid:9504
db:JVNDBid:JVNDB-2004-000762
db:CNNVDid:CNNVD-200403-015
db:NVDid:CVE-2004-0089

LAST UPDATE DATE

2024-08-14T12:37:54.783000+00:00


SOURCES UPDATE DATE

db:CERT/CCid:VU#902374date:2004-03-15T00:00:00
db:VULHUBid:VHN-8519date:2017-10-10T00:00:00
db:VULMONid:CVE-2004-0089date:2017-10-10T00:00:00
db:BIDid:9731date:2009-07-12T03:06:00
db:BIDid:9509date:2009-07-12T02:06:00
db:BIDid:9504date:2009-07-12T02:06:00
db:JVNDBid:JVNDB-2004-000762date:2024-05-29T07:46:00
db:CNNVDid:CNNVD-200403-015date:2005-05-13T00:00:00
db:NVDid:CVE-2004-0089date:2017-10-10T01:30:17.267

SOURCES RELEASE DATE

db:CERT/CCid:VU#902374date:2004-03-08T00:00:00
db:VULHUBid:VHN-8519date:2004-03-03T00:00:00
db:VULMONid:CVE-2004-0089date:2004-03-03T00:00:00
db:BIDid:9731date:2004-02-24T00:00:00
db:BIDid:9509date:2004-01-27T00:00:00
db:BIDid:9504date:2004-01-27T00:00:00
db:JVNDBid:JVNDB-2004-000762date:2024-05-29T00:00:00
db:CNNVDid:CNNVD-200403-015date:2003-07-18T00:00:00
db:NVDid:CVE-2004-0089date:2004-03-03T05:00:00