Details of VAR-200510-0133

ID

VAR-200510-0133

CVE

CVE-2005-2759

TITLE

Symantec Norton Antivirus For Macintosh DiskMountNotify Local privilege elevation vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200510-157

DESCRIPTION

** SPLIT ** The jlucaller program in LiveUpdate for Symantec Norton AntiVirus 9.0.3 on Macintosh runs setuid when executing Java programs, which allows local users to gain privileges. NOTE: due to a CNA error, this candidate was also originally assigned to an issue in DiskMountNotify. Use CVE-2005-3270 for the DiskMountNotify issue, and CVE-2005-2759 for the LiveUpdate issue. This issue is due to a failure of the application to properly utilize the PATH environment variable in a setuid-superuser binary. This vulnerability allows local attackers to gain superuser privileges, leading to complete compromise of the affected computer. This may be exploited by malicious users to execute arbitrary commands with System Administrative privileges by modifying the execution path that the component uses to locate system commands. The vulnerability has been reported in the following versions : * version 9.0.0, 9.0.1 * version 9.0.2 (English, Japanese) * version 9.0.2 Build 5 (French, German, Italian) * version 9.0.3 (English, Japanese) * version 10.0.0, 10.0.1 2) The LiveUpdate component uses a suid command-line application to interface with the Java interpreter. This can be exploited by malicious users to execute arbitrary Java code with System Administrative privileges using the interface application. The vulnerability has been reported in the following products: * LiveUpdate for Macintosh versions 3.0.0, 3.0.1 and 3.0.2 * LiveUpdate for Macintosh version 3.0.3 Build 5 (English) * LiveUpdate for Macintosh version 3.0.3 Build 11, 3.5.0 Build 47 * Norton AntiVirus 9.0.x, 10.0.0, 10.0.1 * Norton Personal Firewall 3.0.x, 3.1.0 * Norton Internet Security 3.0.x * Norton Utilities 8.0.x * Norton SystemWorks 3.0.x SOLUTION: Update to the latest version via Live Update. PROVIDED AND/OR DISCOVERED BY: The vendor credits iDEFENSE. ORIGINAL ADVISORY: http://securityresponse.symantec.com/avcenter/security/Content/2005.10.19.html http://securityresponse.symantec.com/avcenter/security/Content/2005.10.19a.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.62

sources: NVD: CVE-2005-2759 // BID: 15142 // BID: 15143 // VULHUB: VHN-13968 // PACKETSTORM: 40811

AFFECTED PRODUCTS

vendor:	symantec	model:	norton antivirus	scope:	eq	version:	9.0.3	Trust: 1.6
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	10.0.1	Trust: 0.6
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	10.0.0	Trust: 0.6
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	9.0.3	Trust: 0.6
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	9.0.2	Trust: 0.6
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	9.0.1	Trust: 0.6
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	9.0.0	Trust: 0.6
vendor:	symantec	model:	antivirus for macintosh	scope:	ne	version:	10.0	Trust: 0.6
vendor:	symantec	model:	norton utilities for macintosh	scope:	eq	version:	8.0	Trust: 0.3
vendor:	symantec	model:	norton system works for macintosh	scope:	eq	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton personal firewall for macintosh	scope:	eq	version:	3.1	Trust: 0.3
vendor:	symantec	model:	norton personal firewall for macintosh	scope:	eq	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton internet security for macintosh	scope:	eq	version:	3.0	Trust: 0.3
vendor:	symantec	model:	norton antivirus for macintosh	scope:	eq	version:	10.9.1	Trust: 0.3
vendor:	symantec	model:	liveupdate for macintosh	scope:	eq	version:	3.5	Trust: 0.3
vendor:	symantec	model:	liveupdate for macintosh	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	symantec	model:	liveupdate for macintosh	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	symantec	model:	liveupdate for macintosh	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	symantec	model:	liveupdate for macintosh	scope:	eq	version:	3.0	Trust: 0.3

sources: BID: 15142 // BID: 15143 // CNNVD: CNNVD-200510-157 // NVD: CVE-2005-2759

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2005-2759
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200510-157
value:	HIGH
Trust: 0.6
VULHUB:	VHN-13968
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2005-2759
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-13968
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-13968 // CNNVD: CNNVD-200510-157 // NVD: CVE-2005-2759

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-2759

THREAT TYPE

local

Trust: 1.3

sources: BID: 15142 // BID: 15143 // PACKETSTORM: 40811 // CNNVD: CNNVD-200510-157

TYPE

Design Error

Trust: 0.9

sources: BID: 15143 // CNNVD: CNNVD-200510-157

EXTERNAL IDS

db:	NVD	id:	CVE-2005-2759	Trust: 2.3
db:	BID	id:	15142	Trust: 2.0
db:	SECUNIA	id:	17268	Trust: 1.8
db:	SECTRACK	id:	1015083	Trust: 1.7
db:	CNNVD	id:	CNNVD-200510-157	Trust: 0.7
db:	IDEFENSE	id:	20051020 SYMANTEC NORTON ANTIVIRUS LIVEUPDATE LOCAL PRIVILEGE ESCALATION	Trust: 0.6
db:	BID	id:	15143	Trust: 0.4
db:	VULHUB	id:	VHN-13968	Trust: 0.1
db:	PACKETSTORM	id:	40811	Trust: 0.1

sources: VULHUB: VHN-13968 // BID: 15142 // BID: 15143 // PACKETSTORM: 40811 // CNNVD: CNNVD-200510-157 // NVD: CVE-2005-2759

REFERENCES

url:	http://www.idefense.com/application/poi/display?id=324&type=vulnerabilities	Trust: 2.2
url:	http://www.symantec.com/avcenter/security/content/2005.10.19a.html	Trust: 2.0
url:	http://www.securityfocus.com/bid/15142	Trust: 1.7
url:	http://securitytracker.com/id?1015083	Trust: 1.7
url:	http://secunia.com/advisories/17268	Trust: 1.7
url:	http://www.symantec.com/nav/nav_mac/	Trust: 0.6
url:	/archive/1/414065	Trust: 0.3
url:	http://www.symantec.com/avcenter/security/content/2005.10.19.html	Trust: 0.3
url:	/archive/1/414066	Trust: 0.3
url:	http://www.idefense.com/application/poi/display?id=324&type=vulnerabilities	Trust: 0.1
url:	http://secunia.com/product/5953/	Trust: 0.1
url:	http://secunia.com/advisories/17268/	Trust: 0.1
url:	http://secunia.com/product/5950/	Trust: 0.1
url:	http://securityresponse.symantec.com/avcenter/security/content/2005.10.19a.html	Trust: 0.1
url:	http://secunia.com/product/5951/	Trust: 0.1
url:	http://secunia.com/secunia_security_advisories/	Trust: 0.1
url:	http://securityresponse.symantec.com/avcenter/security/content/2005.10.19.html	Trust: 0.1
url:	http://secunia.com/product/5954/	Trust: 0.1
url:	http://secunia.com/product/5952/	Trust: 0.1
url:	http://secunia.com/product/5949/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/about_secunia_advisories/	Trust: 0.1
url:	http://secunia.com/product/5948/	Trust: 0.1

sources: VULHUB: VHN-13968 // BID: 15142 // BID: 15143 // PACKETSTORM: 40811 // CNNVD: CNNVD-200510-157 // NVD: CVE-2005-2759

CREDITS

Discovery is credited to DigitalMunition.com.

Trust: 1.2

sources: BID: 15142 // BID: 15143 // CNNVD: CNNVD-200510-157

SOURCES

db:	VULHUB	id:	VHN-13968
db:	BID	id:	15142
db:	BID	id:	15143
db:	PACKETSTORM	id:	40811
db:	CNNVD	id:	CNNVD-200510-157
db:	NVD	id:	CVE-2005-2759

LAST UPDATE DATE

2024-08-14T14:22:54.774000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-13968	date:	2011-03-08T00:00:00
db:	BID	id:	15142	date:	2009-07-12T17:56:00
db:	BID	id:	15143	date:	2009-07-12T17:56:00
db:	CNNVD	id:	CNNVD-200510-157	date:	2005-10-24T00:00:00
db:	NVD	id:	CVE-2005-2759	date:	2011-03-08T02:24:59.860

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-13968	date:	2005-10-20T00:00:00
db:	BID	id:	15142	date:	2005-10-19T00:00:00
db:	BID	id:	15143	date:	2005-10-19T00:00:00
db:	PACKETSTORM	id:	40811	date:	2005-10-21T17:57:17
db:	CNNVD	id:	CNNVD-200510-157	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2005-2759	date:	2005-10-20T23:02:00