CVE-2007-5829
Last modified
CVE-2007-5829 is a vulnerability of currently unknown severity. The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permissions (group writable), which allows local admin users to gain root privileges by replacing unspecified files, which are executed when a user with physical access inserts a disk and the "Show Progress During Mount Scans" option is enabled.. EPSS estimates a 0.31% chance of exploitation in the next 30 days.
Description
The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permissions (group writable), which allows local admin users to gain root privileges by replacing unspecified files, which are executed when a user with physical access inserts a disk and the "Show Progress During Mount Scans" option is enabled.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Norton Antivirus | 9.0 |
| Symantec | Norton Antivirus | 9.0.1 |
| Symantec | Norton Antivirus | 9.0.2 |
| Symantec | Norton Antivirus | 9.0.3 |
| Symantec | Norton Antivirus | 10.0 |
| Symantec | Norton Antivirus | 10.1 |
| Symantec | Norton Internet Security | 3.0 |
References
- http://secunia.com/advisories/27488Vendor Advisory
- http://www.vupen.com/english/advisories/2007/3698Vendor Advisory
- http://secunia.com/advisories/27488Vendor Advisory
- http://www.vupen.com/english/advisories/2007/3698Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-5829?
How severe is CVE-2007-5829?
How do I fix CVE-2007-5829?
Are you affected by CVE-2007-5829?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST