CVE-2001-1411 - Format string vulnerability in gm4 (aka m4) on Mac OS X may allow local users to gain privileges if

CVE-2001-1411

Summary

Format string vulnerability in gm4 (aka m4) on Mac OS X may allow local users to gain privileges if gm4 is called by setuid programs.

References

Vulnerable Configurations

cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bugtraq	20011020 gm4 format strings on OSX
cert-vn	VU#147587
confirm	http://lists.apple.com/mhonarc/security-announce/msg00038.html
xf	macos-gm4-utility-bo(10174)

Last major update

18-10-2016 - 02:15

Published

17-11-2003 - 05:00

Last modified

18-10-2016 - 02:15