VULHUB ™

MacOS X is prone to an issue which will allow a local attacker to gain root privileges on the host. NetInfo Manager, which runs as root, does not drop superuser privileges when it spawns applications in the 'Recent Items' list. As a result, an attacker can have arbitrary programs executed with root privileges. This problem is not exclusive to the 'Recent Items' list. The 'Services' menu is also prone to this issue.

MacOS X is prone to an issue which will allow a local attacker to gain root privileges on the host. NetInfo Manager, which runs as root, does not drop superuser privileges when it spawns applications in the 'Recent Items' list. As a result, an attacker can have arbitrary programs executed with root privileges. This problem is not exclusive to the 'Recent Items' list. The 'Services' menu is also prone to this issue.