Privilege Escalation via Setuid/Setgid Scripts in Mac OS X 10.3.9 and Earlier

Privilege Escalation via Setuid/Setgid Scripts in Mac OS X 10.3.9 and Earlier

CVE-2005-0970 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:C

Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with escalated privileges via vulnerable scripts.

Learn more about our User Device Pen Test.