=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2006/VULN535
_____________________________________________________________________

DATE                      : 17/11/2006

HARDWARE PLATFORM(S)      : APPLE.

OPERATING SYSTEM(S)       : Mac OS X running Apple Remote Desktop 3.0.

======================================================================

APPLE-SA-2006-11-16 Apple Remote Desktop 3.1

Apple Remote Desktop 3.1 is now available.  Along with functionality
improvements (see release notes), it also fixes the following
security issue:

Apple Remote Desktop
CVE-ID:  CVE-2006-4413
Available for:  Apple Remote Desktop 3.0
Impact:  Malicious local users may be able to modify packages
used to install or upgrade client systems
Description:  Apple Remote Desktop includes built-in packages
used to install and upgrade client systems. The permissions on
these packages could allow them to be altered by malicious local
users on Apple Remote Desktop admin systems. This could lead to
the execution of arbitrary commands with root privileges on
client systems when Apple Remote Desktop client software is
installed or upgraded. This issue has been addressed by applying
more restrictive permissions on the built-in installation
packages. Credit to Andrew Mortensen of the University of
Michigan for reporting this issue.

Apple Remote Desktop 3.1 may be obtained from:
http://www.apple.com/support/downloads/

For Apple Remote Desktop Client
The download file is named:  "RemoteDesktopClient.dmg"
Its SHA-1 digest is:  5747716690703dc6655a2882ebba77424c661650

For Apple Remote Desktop Admin
The download file is named:  "RemoteDesktopAdmin310.dmg"
Its SHA-1 digest is:  b86f7fb03253c70e3cf33f6ce6c8c1491daae0a7

Information will also be posted to the Apple Product Security
web site:  http://docs.info.apple.com/article.html?artnum=61798

This message is signed with Apple's Product Security PGP key,
and details are available at:
http://www.apple.com/support/security/pgp/

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================