SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (Generic)  >   Apple Xcode Vendors:   Apple Computer
Apple Xcode Lets Local Applications Access Keychain Information For Other Applications
SecurityTracker Alert ID:  1027302
SecurityTracker URL:  http://securitytracker.com/id/1027302
CVE Reference:   CVE-2012-3698   (Links to External Site)
Date:  Jul 26 2012
Impact:   Disclosure of authentication information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 4.4
Description:   A vulnerability was reported in Apple Xcode. A local user can obtain keychain authentication information.

When an App Store app component that does not have a bundle identifier is signed via Xcode, the developer ID is not included in the generated designated requirement (DR). As a result, an arbitrary App Store app can access keychain items for the target component or app.
Impact:   A local user (app) can obtain keychain information for other apps on the target system.
Solution:   The vendor has issued a fix (4.4), available from the Downloads section of the Apple Developer Connection Member site at:

http://developer.apple.com/

Xcode 4.4 is also available from the App Store. It is free to anyone with OS X 10.7.x Lion and later.

The download file is named: "xcode446938108a.dmg"
Its SHA-1 digest is: d04393543564f85c2f4d82e507d596d3070e9aba

The vendor's advisory will be available at:

http://support.apple.com/kb/HT1222
Vendor URL:  www.apple.com/ (Links to External Site)
Cause:   Access control error
Underlying OS:   UNIX (OS X)

Message History:   None.

 Source Message Contents
Date:  Thu, 26 Jul 2012 00:26:50 +0000
Subject:  Apple Xcode


Excerpt from APPLE-SA-2012-07-25-2 Xcode 4.4

Xcode
Available for:  OS X Lion v10.7.4 and later
Impact:  Helper tools built with Xcode allow any App Store
application to read their keychain entries
Description:  All signed programs contain a designated requirement
(DR) which states, from the perspective of the developer of the
program, what constraints a program needs to satisfy in order to be
considered an instance of this program. When a Developer ID was used
with Xcode to sign a product that did not have a bundle identifier,
such as a command-line tool or an embedded helper, the generated DR
for the product did not include the developer's ID in the part of the
DR that applies to apps signed by the App Store. As a result, any App
Store app may have accessed keychain items created by the product.
This is addressed by generating a DR with improved checks. Affected
products need to be re-signed with this version of Xcode to include
the improved DR.
CVE-ID
CVE-2012-3698


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2013, SecurityGlobal.net LLC