Mac OS X Persistent Payload Installer

This module provides a persistent boot payload by creating a launch item, which can be a LaunchAgent or a LaunchDaemon. LaunchAgents run with user level permissions and are triggered upon login by a plist entry in /Library/LaunchAgents. LaunchDaemons run with elevated privilleges, and are launche...

Command injection

Orbicule Undercover allows attackers with physical or root access to disable the protection by using the chmod command to change the permissions of the /private/etc/uc.app/Contents/MacOS/uc file, which prevents the service from being started in LaunchDaemon...

CVE-2006-0640

Orbicule Undercover allows attackers with physical or root access to disable the protection by using the chmod command to change the permissions of the /private/etc/uc.app/Contents/MacOS/uc file, which prevents the service from being started in LaunchDaemon...

CVE-2006-0640

CVE-2006-0640 concerns Orbicule Undercover, where attackers with physical or root access can run a local chmod to change permissions of /private/etc/uc.app/Contents/MacOS/uc. This action disables the protection and prevents the LaunchDaemon service from starting. The NVD entry notes a very low ov...