CVE-2006-4887

Name of the Vulnerable Software and Affected Versions Apple Remote Desktop versions 10.2.8 and later

Description The issue allows local users to bypass authentication and gain privileges by selecting the icon during installation of certain applications. This occurs because Apple Remote Desktop does not drop privileges on the remote machine while installing these applications.

Recommendations For Apple Remote Desktop versions 10.2.8 and later, consider restricting the installation of applications that require elevated privileges until a fix is available. As a temporary workaround, avoid selecting icons during installation to minimize the risk of exploitation.