58 matches found
CVE-2007-3184
Cisco Trust Agent (CTA) for Mac OS X prior to 2.1(104).0 is vulnerable to a local, unauthenticated attack with physical access: when the ACS prompts a user notification after posture validation, an attacker can interact with the Apple Menu to bypass authentication and access System Preferences wi...
Cisco Trust Agent Vulnerability
Vulnerability: There is a vulnerability affecting the latest version v2.1.103.0 of the Cisco Trust Agent software for MacOS X that can allow an individual with physical access to an endpoint to bypass authentication and gain administrative access to the local machine. Description: When Cisco Secu...
Cisco Trust Agent Local Privilege Escalation Vulnerability
Cisco Trust Agent versions 2.1103 and prior contain a vulnerability when running on Apple Mac OS X that could allow an unauthenticated, local user to bypass security restrictions and gain unauthorized access to the affected system. This vulnerability exists due to improper display of user...
MOAB-21-01-2007.rb.txt
!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. "Exploit" for MOAB-21-01-2007: OS X, making root shells easier each day. SHELLWRAP = 'int main system"/bin/sh -i"; return 0; ' SHELLPLANT = 'int main system"chown root: /tmp/shX; chmod 4755 /tmp/shX"; return 0; '...
Mac OS X 10.4.8 System Preferences Local Privilege Escalation Exploit
No description provided by source. !/usr/bin/ruby Copyright c 2007 Kevin Finisterre kflists at digitalmunition.com Lance M. Havok lmh at info-pull.com All pwnage reserved. "Exploit" for MOAB-21-01-2007: OS X, making root shells easier each day...
MOAB-21-01-2007: System Preferences writeconfig Local Privilege Escalation Vulnerability
Summary Apple provides the following description in the The Preference Application documentation: System Preferences is the standard location for presenting system-level preferences on OSX. The preference panes shipped with Mac OS X include panes affecting hardware such as the Sound, Mouse, and...
Apple Mac OSX 10.4.8 - System Preferences Privilege Escalation
Apple Mac OSX 10.4.8 - System Preferences Privilege Escalation !/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. "Exploit" for MOAB-21-01-2007: OS X, making root shells easier each day. SHELLWRAP = 'int main system"/bin/sh -i"; return 0; ' SHELLPLANT = 'int main...
Mac OS X 10.4.8 System Preferences Local Privilege Escalation Exploit
Exploit for macOS platform in category local exploits ===================================================================== Mac OS X 10.4.8 System Preferences Local Privilege Escalation Exploit ===================================================================== !/usr/bin/ruby Copyright c 2007...
Apple Mac OSX 10.4.8 - System Preferences Privilege Escalation
!/usr/bin/ruby Copyright c 2007 Kevin Finisterre Lance M. Havok All pwnage reserved. "Exploit" for MOAB-21-01-2007: OS X, making root shells easier each day. SHELLWRAP = 'int main system"/bin/sh -i"; return 0; ' SHELLPLANT = 'int main system"chown root: /tmp/shX; chmod 4755 /tmp/shX"; return 0; '...
CVE-2006-4387
Apple Mac OS X 10.4 through 10.4.7, when the administrator clears the "Allow user to administer this computer" checkbox in System Preferences for a user, does not remove the user's account from the appserveradm or appserverusr groups, which still allows the user to manage WebObjects applications...
CVE-2006-4387
CVE-2006-4387 concerns Apple Mac OS X 10.4.x (specifically 10.4 through 10.4.7). The issue: after an administrator clears the “Allow user to administer this computer” checkbox in System Preferences for a user, the user is not removed from the appserveradm or appserverusr groups, leaving the user ...
Roxio Toast 7 - DejaVu Component PATH Variable Privilege Escalation
Roxio Toast 7 - DejaVu Component PATH Variable Privilege Escalation source: https://www.securityfocus.com/bid/19596/info Roxio Toast is prone to a local privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. As a result, local users may set their own search...
CVE-2003-0883
The System Preferences capability in Mac OS X before 10.3 allows local users to access secure Preference Panes for a short period after an administrator has authenticated to the system...
CVE-2003-0883
CVE-2003-0883 affects the System Preferences capability in Mac OS X prior to 10.3. Local users can access secure Preference Panes for a short period after an administrator authenticates, exposing partial confidentiality/integrity/availability impacts. The CVSS base score is 4.6 (MEDIUM) with loca...
CVE-2003-0880
CVE-2003-0880 involves a vulnerability in Mac OS X prior to 10.3 where local users could access Dock functions from behind Screen Effects when Full Keyboard Access is enabled via the Keyboard pane in System Preferences. The description labels the vulnerability as Unknown, with no publicly provide...
CVE-2001-0438
Preview version of Timbuktu for Mac OS X allows local users to modify System Preferences without logging in via the About Timbuktu menu...
CVE-2001-0438
Preview version of Timbuktu for Mac OS X allows local users to modify System Preferences without logging in via the About Timbuktu menu...
CVE-2001-0438
The CVE-2001-0438 entry concerns Timbuktu for Mac OS X where a local user can modify System Preferences via the About Timbuktu menu without authentication. Affected component: Timbuktu on macOS (Preview version). Root cause details are not elaborated beyond the described UI misbehavior. Impact pe...