CVE DATABASE / CVE-2007-3749
CVE-2007-3749
CVSS 7.8 · HIGH
Summary
The kernel in Apple Mac OS X 10.4 through 10.4.10 does not reset the current Mach Thread Port or Thread Exception Port when executing a setuid program, which allows local users to execute arbitrary code by creating the port before launching the setuid program, then writing to the address space of the setuid process.
CVSS 3.1 breakdown
| Base score | 7.8 (HIGH) |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Attack vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | HIGH |
| Integrity | HIGH |
| Availability | HIGH |
Weakness type (CWE)
Affected products
Apple mac os x
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://docs.info.apple.com/article.html?artnum=307041
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=630
- http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html
- http://secunia.com/advisories/27643
- http://www.securityfocus.com/bid/26444
- http://www.us-cert.gov/cas/techalerts/TA07-319A.html
- http://www.vupen.com/english/advisories/2007/3868
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38466
Data: NIST NVD. NVD last modified 2026-04-23. Always verify against the vendor advisory before acting.