Privilege Escalation via Apple Remote Desktop Client 1.2.4 and Fast User Switching

Privilege Escalation via Apple Remote Desktop Client 1.2.4 and Fast User Switching

CVE-2004-0962 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitrary code when loginwindow is active via Fast User Switching.

Learn more about our Cis Benchmark Audit For Desktop Software.