The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa applications attempt to notify the user.
References
Configurations
Information
Published : 2007-01-23 17:28
Updated : 2017-07-28 18:29
NVD link : CVE-2007-0023
Mitre link : CVE-2007-0023
JSON object : View
CWE
Products Affected
apple
- mac_os_x