Vulnerability Note VU#578886

Apple Mac OS X contains a vulnerability in DiskArbitration when initializing writable removable media

Original Release date: 25 Feb 2004 | Last revised: 19 Mar 2004

Overview

Apple Mac OS X contains a vulnerability in the way DiskArbitration initializes writable removable media.

Description

The DiskArbitration Server in Apple Mac OS X tracks new disks and provides notifications announcing their availability. There is a non-specific vulnerability identified as CAN-2004-0167 in Apple Security Advisory Update 2004-02-23. This vulnerability is related to initialization of writable removable media (i.e., potentially CD-RW and DVD+RW disks).

Impact

The complete impact of this vulnerability is not yet known.

Solution

Apply Patch

Apple has released a patch to address this vulnerability. For further details, please see the Apple Security Advisory (Security Update 2004-02-23).

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Apple Computer Inc.Affected-25 Feb 2004
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

This vulnerability was reported by Apple.

This document was written by Damon Morda.

Other Information

  • CVE IDs: CAN-2004-0167
  • Date Public: 24 Feb 2004
  • Date First Published: 25 Feb 2004
  • Date Last Updated: 19 Mar 2004
  • Document Revision: 13

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.