Sign-up

ID

VAR-201704-0759


CVE

CVE-2017-2402


TITLE

Apple macOS of MCX Vulnerability that prevents access restrictions on client components

Trust: 0.8

sources: JVNDB: JVNDB-2017-002433

DESCRIPTION

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves mishandling of profile uninstall actions in the "MCX Client" component when a profile has multiple payloads. It allows remote attackers to bypass intended access restrictions by leveraging Active Directory certificate trust that should not have remained. Apple macOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, obtain sensitive information, cause a denial-of-service condition, or bypass security restrictions and perform unauthorized actions. This may aid in further attacks. MCX Client is one of the management clients. A remote attacker could exploit this vulnerability to bypass established security restrictions

Trust: 1.98

sources: NVD: CVE-2017-2402 // JVNDB: JVNDB-2017-002433 // BID: 97140 // VULHUB: VHN-110605

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.12.3

Trust: 1.4

vendor:applemodel:mac os xscope:lteversion:10.12.3

Trust: 1.0

vendor:webkitmodel:open source project webkitscope:eqversion:0

Trust: 0.3

vendor:ubuntumodel:linuxscope:eqversion:16.10

Trust: 0.3

vendor:ubuntumodel:linux ltsscope:eqversion:16.04

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

vendor:applemodel:macosscope:eqversion:10.12.3

Trust: 0.3

vendor:applemodel:security update yosemitescope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:security update el capitanscope:neversion:2017-0010

Trust: 0.3

vendor:applemodel:macosscope:neversion:10.12.4

Trust: 0.3

sources: BID: 97140 // JVNDB: JVNDB-2017-002433 // CNNVD: CNNVD-201704-053 // NVD: CVE-2017-2402

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-2402
value: CRITICAL

Trust: 1.0

NVD: CVE-2017-2402
value: CRITICAL

Trust: 0.8

CNNVD: CNNVD-201704-053
value: CRITICAL

Trust: 0.6

VULHUB: VHN-110605
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2017-2402
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-110605
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-2402
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-110605 // JVNDB: JVNDB-2017-002433 // CNNVD: CNNVD-201704-053 // NVD: CVE-2017-2402

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-284

Trust: 0.9

sources: VULHUB: VHN-110605 // JVNDB: JVNDB-2017-002433 // NVD: CVE-2017-2402

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-053

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201704-053

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-002433

PATCH
title:Apple security updatesurl:https://support.apple.com/en-us/HT201222
Trust: 0.8
title:HT207615url:https://support.apple.com/en-us/HT207615
Trust: 0.8
title:HT207615url:https://support.apple.com/ja-jp/HT207615
Trust: 0.8
title:Apple macOS Sierra MCX Client Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68946
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2017-002433 // 
            
            
            
            CNNVD: CNNVD-201704-053

EXTERNAL IDS
db:NVDid:CVE-2017-2402
Trust: 2.8
db:BIDid:97140
Trust: 2.0
db:SECTRACKid:1038138
Trust: 1.7
db:JVNid:JVNVU90482935
Trust: 0.8
db:JVNDBid:JVNDB-2017-002433
Trust: 0.8
db:CNNVDid:CNNVD-201704-053
Trust: 0.7
db:VULHUBid:VHN-110605
Trust: 0.1
sources:
            
            
            VULHUB: VHN-110605 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002433 // 
            
            
            
            CNNVD: CNNVD-201704-053 // 
            
            
            
            NVD: CVE-2017-2402

REFERENCES
url:http://www.securityfocus.com/bid/97140
Trust: 1.7
url:https://support.apple.com/ht207615
Trust: 1.7
url:http://www.securitytracker.com/id/1038138
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2402
Trust: 0.8
url:http://jvn.jp/vu/jvnvu90482935/index.html
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-2402
Trust: 0.8
url:https://www.apple.com/
Trust: 0.3
url:http://www.apple.com/macosx/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-110605 // 
            
            
            
            BID: 97140 // 
            
            
            
            JVNDB: JVNDB-2017-002433 // 
            
            
            
            CNNVD: CNNVD-201704-053 // 
            
            
            
            NVD: CVE-2017-2402

CREDITS
Ulf Frisk, Apple, Brandon Azad, an anonymous researcher, Max Bazaliy, beist, Sergey Bylokhov, Simon Huang, pjf, Alex Fishman, Izik Eidus, Pekka Oikarainen, Matias Karhumaa, Marko Laakso, @cocoahuke, kimyok, Craig Arendt, Axis, sss, Orr A, Benjamin Gnahm, I
Trust: 0.3
sources:
            
            
            BID: 97140

SOURCES
db:VULHUBid:VHN-110605
db:BIDid:97140
db:JVNDBid:JVNDB-2017-002433
db:CNNVDid:CNNVD-201704-053
db:NVDid:CVE-2017-2402

LAST UPDATE DATE
2024-11-23T20:33:26.914000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-110605date:2019-10-03T00:00:00
db:BIDid:97140date:2017-06-08T08:02:00
db:JVNDBid:JVNDB-2017-002433date:2017-04-13T00:00:00
db:CNNVDid:CNNVD-201704-053date:2019-10-23T00:00:00
db:NVDid:CVE-2017-2402date:2024-11-21T03:23:27.310

SOURCES RELEASE DATE
db:VULHUBid:VHN-110605date:2017-04-02T00:00:00
db:BIDid:97140date:2017-03-27T00:00:00
db:JVNDBid:JVNDB-2017-002433date:2017-04-13T00:00:00
db:CNNVDid:CNNVD-201704-053date:2017-04-05T00:00:00
db:NVDid:CVE-2017-2402date:2017-04-02T01:59:01.013