Mac OS X System Preferences Writeconfig Local Privilege Escalation Vulnerability

Mac OS X System Preferences Writeconfig Local Privilege Escalation Vulnerability

Mac OS X is prone to a local privilege-escalation vulnerability because the 'System Preferences' utility fails to verify the 'PATH' environment variable.

A successful attack can allow local attackers to gain superuser privileges.

Mac OS X 10.4.8 is reported vulnerable; other versions may be affected as well.