| |
Vulnerability CVE-2004-0962
Published: 2005-02-09 Modified: 2012-02-12
Description: |
Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitrary code when loginwindow is active via Fast User Switching. |
Type:
CWE-Other
CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
10/10 |
10/10 |
10/10 |
Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
No required |
Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
Complete |
Complete |
References: |
http://lists.apple.com/archives/security-announce/2004/Oct/msg00002.html
|
|
|
closedb();
?>
Copyright 2024, cxsecurity.com
|
|
|