ISS X-Force Database: macos-gm4-utility-bo(10174): Apple Mac OS X gm4 utility buffer overflow

Apple Mac OS X gm4 utility buffer overflow

macos-gm4-utility-bo (10174)

High Risk

Description:

Apple Mac OS X could allow a local attacker to gain root privileges, caused by a buffer overflow in the gm4 utility. By default, some programs that use gm4 are installed setuid root. A local attacker could run gm4 in order to exploit vulnerabilities in other programs that use gm4 to gain root privileges on the system.

Consequences:

Gain Privileges

Remedy:

Upgrade to the latest version of Mac OS X (10.3 or later), as listed in AppleCare Knowledge Base Document 61798. See References.

References:

AppleCare Knowledge Base Document 61798: Security Update 2003-08-14.
BID-9074: Apple Mac OS X Jaguar/Panther Multiple Vulnerabilities
CVE-2001-1411: Format string vulnerability in gm4 (aka m4) on Mac OS X may allow local users to gain privileges if gm4 is called by setuid programs.
US-CERT VU#147587: Mac OS X utility gm4 contains format string vulnerability

Platforms Affected:

Apple Mac OS X 10.0
Apple Mac OS X 10.0.4
Apple Mac OS X 10.1
Apple Mac OS X 10.1.1
Apple Mac OS X 10.1.2
Apple Mac OS X 10.1.3
Apple Mac OS X 10.1.4
Apple Mac OS X 10.1.5
Apple Mac OS X 10.2
Apple Mac OS X 10.2.1
Apple Mac OS X 10.2.2
Apple Mac OS X 10.2.3
Apple Mac OS X 10.2.4
Apple Mac OS X 10.2.5
Apple Mac OS X 10.2.6
Apple Mac OS X 10.2.7
Apple Mac OS X 10.2.8
Apple Mac OS X 10.3
Apple Mac OS X 10.3.1
Apple Mac OS X Server 10.0
Apple Mac OS X Server 10.0.1
Apple Mac OS X Server 10.0.2
Apple Mac OS X Server 10.0.3
Apple Mac OS X Server 10.1
Apple Mac OS X Server 10.1.1
Apple Mac OS X Server 10.1.2
Apple Mac OS X Server 10.1.3
Apple Mac OS X Server 10.1.4
Apple Mac OS X Server 10.1.5
Apple Mac OS X Server 10.2
Apple Mac OS X Server 10.2.1
Apple Mac OS X Server 10.2.2
Apple Mac OS X Server 10.2.3
Apple Mac OS X Server 10.2.4
Apple Mac OS X Server 10.2.5
Apple Mac OS X Server 10.2.6
Apple Mac OS X Server 10.2.7
Apple Mac OS X Server 10.2.8
Apple Mac OS X Server 10.3
Apple Mac OS X Server 10.3.1

Reported:

Sep 23, 2002

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page