Vulnerability Description
Unsanity Application Enhancer (APE) 2.0.2 installs with insecure permissions for the (1) ApplicationEnhancer binary and the (2) /Library/Frameworks/ApplicationEnhancer.framework directory, which allows local users to gain privileges by modifying or replacing the binary or library files.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Unsanity | Application Enhancer | 2.0.2 |
References
- http://landonf.bikemonkey.org/code/macosx/MOAB_Day_8.20070109002959.18582.timor.Vendor Advisory
- http://osvdb.org/32661
- http://projects.info-pull.com/moab/MOAB-08-01-2007.htmlExploit
- http://secunia.com/advisories/23649
- http://www.securityfocus.com/bid/21951
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31349
- http://landonf.bikemonkey.org/code/macosx/MOAB_Day_8.20070109002959.18582.timor.Vendor Advisory
- http://osvdb.org/32661
- http://projects.info-pull.com/moab/MOAB-08-01-2007.htmlExploit
- http://secunia.com/advisories/23649
- http://www.securityfocus.com/bid/21951
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31349
FAQ
What is CVE-2007-0162?
CVE-2007-0162 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Unsanity Application Enhancer (APE) 2.0.2 installs with insecure permissions for the (1) ApplicationEnhancer binary and the (2) /Library/Frameworks/ApplicationEnhancer.framework directory, which allow...
How severe is CVE-2007-0162?
CVE-2007-0162 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0162?
Check the references section above for vendor advisories and patch information. Affected products include: Unsanity Application Enhancer.