MacOS X 10.1.x SoftwareUpdate Arbitrary Package Installation Vulnerability

2002-07-08T00:00:00
ID EDB-ID:21596
Type exploitdb
Reporter Russell Harding
Modified 2002-07-08T00:00:00

Description

MacOS X 10.1.x SoftwareUpdate Arbitrary Package Installation Vulnerability. CVE-2002-0676. Remote exploit for osx platform

                                        
                                            source: http://www.securityfocus.com/bid/5176/info

A vulnerability has been reported for MacOS X where an attacker may use SoftwareUpdate to install malicious software on the vulnerable system. SoftwareUpdate uses HTTP, without any authentication, to obtain updates from Apple. Any updated packages are installed on the system as the root user.

In order to exploit this vulnerability, the attacker must control the machine located at swquery.apple.com, from the perspective of the vulnerable client. It may be possible to create this condition through some known techniques, including DNS cache poisoning and DNS spoofing.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/21596.tgz.tar