Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-0023 — Apple MAC OS X vulnerability

7 documents3 sources

Severity

6.9MEDIUMNVD

EPSS

0.2%

top 53.95%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apple MAC OS X

Timeline

PublishedJan 24

Latest updateMay 1

Description

The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa applications attempt to notify the user.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

▶NVDapple/mac_os_x10.4.8

🔴Vulnerability Details

GHSA

GHSA-pjgv-jp84-vf63: The CFUserNotificationSendRequest function in UserNotificationCenter↗2022-05-01

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Office 2007 - Malformed Document Stack Buffer Overflow↗2015-08-25

▶

Exploit-DB

Microsoft Office 2007 - OneTableDocumentStream Invalid Object↗2015-08-25

▶

Exploit-DB

Microsoft PowerPoint 2007 - Crash (PoC)↗2013-07-01

▶

Exploit-DB

CA BrightStor ARCserve 11.5.2.0 - 'catirpc.dll' RPC Server Denial of Service↗2007-02-01

▶

Exploit-DB

Apple Mac OSX 10.4.8 - 'UserNotificationCenter' Local Privilege Escalation↗2007-01-23

▶