Vulnerability Details CVE-2006-4413
Apple Remote Desktop before 3.1 uses insecure permissions for certain built-in packages, which allows local users on an Apple Remote Desktop administration system to modify the packages and gain root privileges on client systems that use the packages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.5%
CVSS Severity
CVSS v2 Score 7.2
References
- http://lists.apple.com/archives/security-announce/2006/Nov/msg00000.html
- http://secunia.com/advisories/22982
- http://securitytracker.com/id?1017241
- http://www.securityfocus.com/bid/21139
- http://www.vupen.com/english/advisories/2006/4567
- http://lists.apple.com/archives/security-announce/2006/Nov/msg00000.html
- http://secunia.com/advisories/22982
- http://securitytracker.com/id?1017241
- http://www.securityfocus.com/bid/21139
- http://www.vupen.com/english/advisories/2006/4567
Products affected by CVE-2006-4413
-
cpe:2.3:a:apple:remote_desktop:-
-
cpe:2.3:a:apple:remote_desktop:2.0
-
cpe:2.3:a:apple:remote_desktop:2.1
-
cpe:2.3:a:apple:remote_desktop:3.0