Mac OS X rsh Environment Variables Privilege Elevation

Added: 10/15/2015 CVE: CVE-2015-5889 Background The remotecmds component of Apple Mac OS X contains an rsh binary program that allows a user to execute commands on another computer across a computer network. Problem The rsh binary in the remotecmds component of Mac OS X versions prior to 10.11...

CVE-2015-5889

rsh in the remotecmds component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving environment variables...

CVE-2015-5889

CVE-2015-5889 affects Apple macOS prior to 10.11, where the rsh component in the remote_cmds area allows local users to elevate privileges to root via environment variable vectors. Public details confirm a local-privilege-escalation path, with exploit-publications and PoC modules targeting the OS...

CVE-2007-4687

Apple Mac OS X 10.4–10.4.10 contains a symbolic link from /private/tftpboot to the root directory, allowing tftpd users to escape the private directory and access arbitrary files. The issue affects the remote_cmds component and was documented across multiple sources (CVE-2007-4687). Exploitation ...

Mac OS X < 10.4.11 Multiple Vulnerabilities (Security Update 2007-008)

The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.11 or a version of Mac OS X 10.3 which does not have Security Update 2007-008 applied. This update contains several security fixes for the following programs : - Flash Player Plugin - AppleRAID - BIND - bzip2 -...