Vulnerabilities > CVE-2004-0962 - Unspecified vulnerability in Apple Remote Desktop 2.0.0

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

apple

critical

NVD

Published: 2005-02-09

Updated: 2018-10-30

Summary

Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitrary code when loginwindow is active via Fast User Switching.

Vulnerable Configurations

Part	Description	Count
Application	Apple Apple Apple Remote Desktop 2.0.0	1

References

http://lists.apple.com/archives/security-announce/2004/Oct/msg00002.html