Details of VAR-200809-0190

ID

VAR-200809-0190

CVE

CVE-2008-3616

TITLE

Apple Mac OS X file sharing allows authenticated remote access to files and directories

Trust: 0.8

sources: CERT/CC: VU#126787

DESCRIPTION

Multiple integer overflows in the SearchKit API in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allow context-dependent attackers to cause a denial of service (application crash) or execute arbitrary code via vectors associated with "passing untrusted input" to unspecified API functions. Apple Mac OS X Leopard does not accurately reflect which files and directories are available via sharing. A vulnerability in a common PHP extension module could allow a remote attacker to execute code on a vulnerable system. The security update addresses a total of 17 new vulnerabilities that affect the Apple Type Services, Directory Services, Finder, ImageIO, Kernel, Login Windows, SearchKit, System Configuration, System Preferences, Time Machine, VideoConference, and Wiki Server components of Mac OS X. The advisory also contains security updates for 17 previously reported issues. Passing untrusted input to SearchKit through the application may cause the application to terminate unexpectedly or execute arbitrary code. ---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secunia_vacancies/ ---------------------------------------------------------------------- TITLE: phpPgAds XML-RPC PHP Code Execution Vulnerability SECUNIA ADVISORY ID: SA15884 VERIFY ADVISORY: http://secunia.com/advisories/15884/ CRITICAL: Highly critical IMPACT: System access WHERE: >From remote SOFTWARE: phpPgAds 2.x http://secunia.com/product/4577/ DESCRIPTION: A vulnerability has been reported in phpPgAds, which can be exploited by malicious people to compromise a vulnerable system. For more information: SA15852 SOLUTION: Update to version 2.0.5. http://sourceforge.net/project/showfiles.php?group_id=36679 OTHER REFERENCES: SA15852: http://secunia.com/advisories/15852/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 3.51

sources: NVD: CVE-2008-3616 // CERT/CC: VU#126787 // CERT/CC: VU#442845 // JVNDB: JVNDB-2008-001724 // BID: 31189 // VULHUB: VHN-33741 // PACKETSTORM: 38390

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	eq	version:	10.5.4	Trust: 1.6
vendor:	apple	model:	mac os x	scope:	eq	version:	10.5.2	Trust: 1.6
vendor:	apple	model:	mac os x	scope:	eq	version:	10.4.11	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.5.2	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.5.1	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.5.4	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.5	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.4.11	Trust: 1.6
vendor:	apple	model:	mac os x	scope:	eq	version:	10.5.3	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.5.3	Trust: 1.6
vendor:	apple	model:	mac os x	scope:	eq	version:	10.5.1	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.5	Trust: 1.0
vendor:	apple computer	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	drupal	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	gentoo linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	mandriva	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	pear xml rpc	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	phpxmlrpc	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	postnuke	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	red hat	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	serendipity	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	trustix secure linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	ubuntu linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	wordpress	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	xoops	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	phpmyfaq	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.4.11	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	v10.5 to v10.5.4	Trust: 0.8
vendor:	apple	model:	mac os x server	scope:	eq	version:	v10.4.11	Trust: 0.8
vendor:	apple	model:	mac os x server	scope:	eq	version:	v10.5 to v10.5.4	Trust: 0.8
vendor:	apple	model:	safari	scope:	eq	version:	3.1.2	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	3.1.1	Trust: 0.3
vendor:	apple	model:	safari beta	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	apple	model:	safari beta	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	apple	model:	safari beta	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	3.2	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	3.1	Trust: 0.3
vendor:	apple	model:	safari beta	scope:	eq	version:	3	Trust: 0.3
vendor:	apple	model:	safari	scope:	eq	version:	3	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.5.4	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.5.3	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.5.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.5.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.4.11	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.5	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.5.4	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.5.3	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.5.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.5.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.4.11	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.5	Trust: 0.3
vendor:	apple	model:	ilife	scope:	eq	version:	8.0	Trust: 0.3
vendor:	apple	model:	aperture	scope:	eq	version:	2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	ne	version:	x10.5.5	Trust: 0.3
vendor:	apple	model:	mac os	scope:	ne	version:	x10.5.5	Trust: 0.3
vendor:	apple	model:	ilife support	scope:	ne	version:	8.3.1	Trust: 0.3

sources: CERT/CC: VU#126787 // CERT/CC: VU#442845 // BID: 31189 // JVNDB: JVNDB-2008-001724 // CNNVD: CNNVD-200809-219 // NVD: CVE-2008-3616

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2008-3616
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#126787
value:	1.01
Trust: 0.8
CARNEGIE MELLON:	VU#442845
value:	20.75
Trust: 0.8
NVD:	CVE-2008-3616
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200809-219
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-33741
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2008-3616
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-33741
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#126787 // CERT/CC: VU#442845 // VULHUB: VHN-33741 // JVNDB: JVNDB-2008-001724 // CNNVD: CNNVD-200809-219 // NVD: CVE-2008-3616

PROBLEMTYPE DATA

problemtype:

CWE-189

Trust: 1.9

sources: VULHUB: VHN-33741 // JVNDB: JVNDB-2008-001724 // NVD: CVE-2008-3616

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200809-219

TYPE

digital error

Trust: 0.6

sources: CNNVD: CNNVD-200809-219

CONFIGURATIONS

sources: JVNDB: JVNDB-2008-001724

PATCH

title:	Security Update 2008-006	url:	http://support.apple.com/kb/HT3137	Trust: 0.8
title:	Security Update 2008-006	url:	http://support.apple.com/kb/HT3137?viewlocale=ja_JP	Trust: 0.8
title:	TA08-260A	url:	http://software.fujitsu.com/jp/security/vulnerabilities/ta08-260a.html	Trust: 0.8

sources: JVNDB: JVNDB-2008-001724

EXTERNAL IDS

db:	NVD	id:	CVE-2008-3616	Trust: 2.8
db:	BID	id:	31189	Trust: 2.8
db:	SECUNIA	id:	31882	Trust: 2.5
db:	USCERT	id:	TA08-260A	Trust: 2.5
db:	SECTRACK	id:	1020880	Trust: 2.5
db:	VUPEN	id:	ADV-2008-2584	Trust: 1.7
db:	XF	id:	45172	Trust: 1.4
db:	CERT/CC	id:	VU#126787	Trust: 1.1
db:	SECUNIA	id:	15884	Trust: 0.9
db:	SECUNIA	id:	15810	Trust: 0.8
db:	SECUNIA	id:	15922	Trust: 0.8
db:	SECUNIA	id:	15852	Trust: 0.8
db:	SECUNIA	id:	15855	Trust: 0.8
db:	SECUNIA	id:	15861	Trust: 0.8
db:	SECUNIA	id:	15862	Trust: 0.8
db:	SECUNIA	id:	15872	Trust: 0.8
db:	SECUNIA	id:	15883	Trust: 0.8
db:	SECUNIA	id:	15895	Trust: 0.8
db:	BID	id:	14088	Trust: 0.8
db:	SECTRACK	id:	1014327	Trust: 0.8
db:	CERT/CC	id:	VU#442845	Trust: 0.8
db:	USCERT	id:	SA08-260A	Trust: 0.8
db:	JVNDB	id:	JVNDB-2008-001724	Trust: 0.8
db:	CERT/CC	id:	TA08-260A	Trust: 0.6
db:	APPLE	id:	APPLE-SA-2008-09-15	Trust: 0.6
db:	CNNVD	id:	CNNVD-200809-219	Trust: 0.6
db:	VULHUB	id:	VHN-33741	Trust: 0.1
db:	PACKETSTORM	id:	38390	Trust: 0.1

sources: CERT/CC: VU#126787 // CERT/CC: VU#442845 // VULHUB: VHN-33741 // BID: 31189 // JVNDB: JVNDB-2008-001724 // PACKETSTORM: 38390 // CNNVD: CNNVD-200809-219 // NVD: CVE-2008-3616

REFERENCES

url:	http://www.securityfocus.com/bid/31189	Trust: 2.5
url:	http://www.us-cert.gov/cas/techalerts/ta08-260a.html	Trust: 2.5
url:	http://securitytracker.com/id?1020880	Trust: 2.5
url:	http://secunia.com/advisories/31882	Trust: 2.5
url:	http://lists.apple.com/archives/security-announce//2008/sep/msg00005.html	Trust: 1.7
url:	http://www.frsirt.com/english/advisories/2008/2584	Trust: 1.4
url:	http://xforce.iss.net/xforce/xfdb/45172	Trust: 1.4
url:	http://www.vupen.com/english/advisories/2008/2584	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/45172	Trust: 1.1
url:	http://secunia.com/advisories/15884/	Trust: 0.9
url:	http://secunia.com/advisories/15852/	Trust: 0.9
url:	about vulnerability notes	Trust: 0.8
url:	contact us about this vulnerability	Trust: 0.8
url:	provide a vendor statement	Trust: 0.8
url:	http://www.hardened-php.net/advisory-022005.php	Trust: 0.8
url:	http://secunia.com/advisories/15861/	Trust: 0.8
url:	http://secunia.com/advisories/15862/	Trust: 0.8
url:	http://secunia.com/advisories/15895/	Trust: 0.8
url:	http://secunia.com/advisories/15883/	Trust: 0.8
url:	http://news.postnuke.com/modules.php?op=modload&name=news&file=article&sid=2699	Trust: 0.8
url:	http://secunia.com/advisories/15855/	Trust: 0.8
url:	http://secunia.com/advisories/15810/	Trust: 0.8
url:	http://secunia.com/advisories/15872/	Trust: 0.8
url:	http://secunia.com/advisories/15922/	Trust: 0.8
url:	http://securitytracker.com/alerts/2005/jun/1014327.html	Trust: 0.8
url:	http://www.gulftech.org/?node=research&article_id=00088-07022005	Trust: 0.8
url:	http://www.gulftech.org/?node=research&article_id=00087-07012005	Trust: 0.8
url:	http://www.securityfocus.com/bid/14088	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-3616	Trust: 0.8
url:	http://jvn.jp/cert/jvnta08-260a/index.html	Trust: 0.8
url:	http://jvn.jp/tr/trta08-260a	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-3616	Trust: 0.8
url:	http://www.us-cert.gov/cas/alerts/sa08-260a.html	Trust: 0.8
url:	http://support.apple.com/kb/ht3137	Trust: 0.3
url:	http://www.apple.com/macosx/	Trust: 0.3
url:	http://www.kb.cert.org/vuls/id/126787	Trust: 0.3
url:	http://secunia.com/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/product/4577/	Trust: 0.1
url:	http://secunia.com/secunia_vacancies/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://sourceforge.net/project/showfiles.php?group_id=36679	Trust: 0.1
url:	http://secunia.com/about_secunia_advisories/	Trust: 0.1

CREDITS

Pete Finnigan※ pete@peterfinnigan.demon.co.uk※Esteban Martinez FayoJoxean Koret※ joxeankoret@yahoo.es※Alexander Kornbrust※ ak@red-database-security.com※Amichai Shulman※ shulman@imperva.com

Trust: 0.6

sources: CNNVD: CNNVD-200809-219

SOURCES

db:	CERT/CC	id:	VU#126787
db:	CERT/CC	id:	VU#442845
db:	VULHUB	id:	VHN-33741
db:	BID	id:	31189
db:	JVNDB	id:	JVNDB-2008-001724
db:	PACKETSTORM	id:	38390
db:	CNNVD	id:	CNNVD-200809-219
db:	NVD	id:	CVE-2008-3616

LAST UPDATE DATE

2024-09-19T22:09:27.038000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#126787	date:	2008-10-14T00:00:00
db:	CERT/CC	id:	VU#442845	date:	2007-03-09T00:00:00
db:	VULHUB	id:	VHN-33741	date:	2017-08-08T00:00:00
db:	BID	id:	31189	date:	2008-11-13T22:34:00
db:	JVNDB	id:	JVNDB-2008-001724	date:	2008-10-10T00:00:00
db:	CNNVD	id:	CNNVD-200809-219	date:	2008-11-15T00:00:00
db:	NVD	id:	CVE-2008-3616	date:	2017-08-08T01:32:02.200

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#126787	date:	2008-09-16T00:00:00
db:	CERT/CC	id:	VU#442845	date:	2005-07-06T00:00:00
db:	VULHUB	id:	VHN-33741	date:	2008-09-16T00:00:00
db:	BID	id:	31189	date:	2008-09-15T00:00:00
db:	JVNDB	id:	JVNDB-2008-001724	date:	2008-10-10T00:00:00
db:	PACKETSTORM	id:	38390	date:	2005-07-01T23:31:00
db:	CNNVD	id:	CNNVD-200809-219	date:	2008-09-16T00:00:00
db:	NVD	id:	CVE-2008-3616	date:	2008-09-16T23:00:01.180