CVE-2007-0023

Apple Mac OS X 10.4.8 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0023. PoCs published by MoAB.

AI-analyzed exploit summary This exploit targets CVE-2007-0023, a vulnerability in macOS involving malicious InputManagers and font files. It downloads and executes payloads to trigger crashes or arbitrary code execution.

Description

The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa applications attempt to notify the user.

Exploits (1)

exploitdb WORKING POC VERIFIED
by MoAB · rubylocalosx
https://www.exploit-db.com/exploits/3181

This exploit targets CVE-2007-0023, a vulnerability in macOS involving malicious InputManagers and font files. It downloads and executes payloads to trigger crashes or arbitrary code execution.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: macOS (multiple versions, including 10.4.8)
No auth needed
Prerequisites: Network access to download payloads · User interaction to execute the script
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (12)

Core 12
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/32695
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-047A.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/31676
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/315856
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/22188
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/Security-announce/2007/Feb/msg00000.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24198
Vendor Advisory x_refsource_confirm
http://docs.info.apple.com/article.html?artnum=305102
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1017542
Exploit, Vendor Advisory x_refsource_misc
http://projects.info-pull.com/moab/MOAB-22-01-2007.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/23846
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0074

Scores

EPSS 0.0154
EPSS Percentile 71.6%

Details

Status published
Products (1)
apple/mac_os_x 10.4.8
Published Jan 24, 2007
Tracked Since Feb 18, 2026