NeXTstep /usr/etc/restore0.9 suid shell script Vulnerability

A script exists as /usr/etc/restore0.9 that is a setuid shell
script. The existence of this script is a potential security
problem.

The script is only needed during the installation process and
isn't needed for normal usage. It is possible for any logged
in user to gain root access.


 

Privacy Statement
Copyright 2010, SecurityFocus