Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
crashdump in Apple Mac OS X 10.4.8 allows local users in the admin group to modify arbitrary files or gain privileges via a symlink attack on application logs in /Library/Logs/CrashReporter/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Mac OS X crashdump本地权限提升漏洞
Vulnerability Description
Mac OS X是苹果家族机器所使用的操作系统。 Mac OS X的crashdump工具在处理日志文件时存在漏洞,本地攻击者可能利用此漏洞提升自己的权限。 crashreporterd是Mac OS X中负责检测应用程序崩溃的守护程序。如果检测到了异常,就会启动crashdump调查崩溃的原因并报告给用户。在报告异常时crashdump首先会试图将报告写入用户的主目录(/Users/[user]/Library/Logs/CrashReporter/),如果由于权限不允许等原因导致主目录不可用的话就会尝
CVSS Information
N/A
Vulnerability Type
N/A