CVE-2006-4404

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions prior to 10.4.8

Description The Installer application in Apple Mac OS X does not authenticate the user before installing certain software requiring system privileges when used by a user with Admin credentials.

Recommendations For Apple Mac OS X versions prior to 10.4.8, consider restricting the use of the Installer application to minimize the risk of exploitation until a fix is available. As a temporary workaround, ensure that only trusted users have Admin credentials to reduce the potential for unauthorized software installation.