Apple OS X Root Privilege Vulnerability

If you are a Mac user, and haven’t seen the latest security vulnerability for OS X yet, Macshadows has an excellent writeup, with a temporary solution.  Essentially, you need to open a terminal window and paste the following command:

sudo chmod u-s /System/Library/CoreServices/RemoteManagement/ARDAgent.app/Contents/MacOS/ARDAgent

After you press return, you will be prompted for your password.  This command changes the executable permissions.  It will also revert back to the vulnerable permissions if you repair disk permissions.  Apple’s latest security patch did NOT correct this issue.

~ by Sumo on July 6, 2008.