OSVDB ID: 30729

Title: Apple Mac OS X Security Framework Online Certificate Status Protocol (OCSP) Revoked Certificate Weakness

Info

Disclosure

Nov 14, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Mac OS X contains a flaw that may allow a malicious user to used a revoked certificate. The issue is triggered when an HTTP proxy is in use, which interferes with the Online Certificate Status Protocol (OCSP). It is possible that the flaw may allow revoked certificates to be used without warning resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Cryptographic
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.

Products

Apple Computer, Inc.	Mac OS X	10.4
		10.4.1
		10.4.2
		10.4.3
		10.4.4
		10.4.5
		10.4.6
		10.4.7
		10.4.8

References

Security Tracker: 1017298
CVE ID: 2006-4409 (see also: NVD)
Bugtraq ID: 21335
Secunia Advisory ID: 23155
Related OSVDB ID: 30726 30727 30728 30730 30731 30732 30733 30734 30735 30736 30737 30738 30739
VUPEN Advisory: ADV-2006-4750
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=304829
News Article: http://news.com.com/Apple+Mac+OS+X+patch+plugs+31+vulnerabilities/2100-1002_3-6139117.html

Credit

Timothy J. Miller - MITRE Corporation

Direct URL: http://osvdb.org/30729

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Apple Computer, Inc.

Mac OS X

References

Credit