Main
Vulnerability Database
Exploits
ID:8192 - Exploit for Improper authorization in Apple Xcode - CVE-2004-2687
ID:8192 - Exploit for Improper authorization in Apple Xcode - CVE-2004-2687
Published: July 30, 2022
Vulnerability identifier: #VU12159
Vulnerability risk: Low
CVE-ID: CVE-2004-2687
CWE-ID: CWE-285
Exploitation vector: Remote access
Vulnerable software:
Apple Xcode
Apple Xcode
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to execute arbitrary commands on the target system.
The weakness exists in distcc due to improper authorization checks when not configured to restrict access to the server port. A remote attacker can execute arbitrary commands via compilation jobs.
The weakness exists in distcc due to improper authorization checks when not configured to restrict access to the server port. A remote attacker can execute arbitrary commands via compilation jobs.
Remediation
Install update from vendor's website.