CVE-2004-0486
Mac OS X 10.2.8 and 10.3.3 - Remote Code Execution via HelpViewer Script Processing
Title source: manualExploitation Summary
EIP tracks 1 public exploit for CVE-2004-0486. PoCs published by Troels Bay.
AI-analyzed exploit summary This exploit leverages the 'help:' protocol in Mac OS X to execute arbitrary AppleScript code via a malicious link. The PoC demonstrates how an attacker can craft an HTML link to trigger script execution with minimal user interaction.
Description
HelpViewer in Mac OS X 10.3.3 and 10.2.8 processes scripts that it did not initiate, which can allow attackers to execute arbitrary code, an issue that was originally reported as a directory traversal vulnerability in the Safari web browser using the runscript parameter in a help: URI handler.
Exploits (1)
This exploit leverages the 'help:' protocol in Mac OS X to execute arbitrary AppleScript code via a malicious link. The PoC demonstrates how an attacker can craft an HTML link to trigger script execution with minimal user interaction.