CVE-2004-0962
First published: Thu Oct 28 2004(Updated: )
Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitrary code when loginwindow is active via Fast User Switching.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Remote Desktop | =2.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2004-0962?
CVE-2004-0962 is considered a critical vulnerability due to its potential to allow remote authenticated users to execute arbitrary code as root.
How do I fix CVE-2004-0962?
To mitigate CVE-2004-0962, users should update Apple Remote Desktop to the latest version provided by Apple.
Who is affected by CVE-2004-0962?
CVE-2004-0962 affects users of Apple Remote Desktop Client 1.2.4 when used in conjunction with Apple Remote Desktop Administrator application.
What kind of attack is possible with CVE-2004-0962?
CVE-2004-0962 allows remote authenticated users to execute arbitrary code within the affected system while loginwindow is active.
Is CVE-2004-0962 specific to certain Mac OS versions?
CVE-2004-0962 specifically affects Apple Remote Desktop version 2.0.0, which may be tied to certain Mac OS versions corresponding with its release.
- agent/type
- agent/softwarecombine
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/apple
- canonical/apple remote desktop
- version/apple remote desktop/2.0.0