Mac OS X Root Escalation Through AppleScript

Posted by timothy on Wednesday June 18, 2008 @08:39AM from the oh-snap-crispy-apples dept.

An anonymous reader writes "Half the Mac OS X boxes in the world (confirmed on Mac OS X 10.4 Tiger and 10.5 Leopard) can be rooted through AppleScript: osascript -e 'tell app "ARDAgent" to do shell script "whoami"'; Works for normal users and admins, provided the normal user wasn't switched to via fast user switching. Secure? I think not." On the other hand, since this exploit seems to require physical access to the machine to be rooted, you might have some other security concerns to deal with at that point, like keeping the intruder from raiding your fridge on his way out.

1 of 359 comments (clear)

Min score:

Reason:

Sort:

This is an OFF-TOPIC reply by That's+What+She+Said · 2008-06-18 10:56 · Score: 0, Offtopic

If I pay twice as much for a "drum and bass" album, will they throw in the "guitar and vocals" also? I am not sure, but pray to Gosh you don't get a boring MC doing some ragga-style vocals over the beats... I love drum and bass, but these MC's are sooooooo damn boring!