CVE-2008-2830

Mac OS X 10.4.11 and 10.5.4 - Privilege Escalation via Scripting Addition Commands

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-2830. PoCs published by anonymous.

AI-analyzed exploit summary This exploit leverages a local privilege escalation vulnerability in ARDAgent (Apple Remote Desktop) on Mac OS X 10.5. It uses osascript to execute arbitrary shell commands with superuser privileges via the ARDAgent application.

Description

Open Scripting Architecture in Apple Mac OS X 10.4.11 and 10.5.4, and some other 10.4 and 10.5 versions, does not properly restrict the loading of scripting addition plugins, which allows local users to gain privileges via scripting addition commands to a privileged application, as originally demonstrated by an osascript tell command to ARDAgent.

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · textlocalosx

https://www.exploit-db.com/exploits/31940

View Code ZIP pw:eip

This exploit leverages a local privilege escalation vulnerability in ARDAgent (Apple Remote Desktop) on Mac OS X 10.5. It uses osascript to execute arbitrary shell commands with superuser privileges via the ARDAgent application.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Mac OS X 10.5 (ARDAgent)

No auth needed

Prerequisites: Local access to the vulnerable Mac OS X system

MITRE ATT&CK