Unrated severityNVD Advisory· Published Jan 24, 2007· Updated Jun 16, 2026
CVE-2007-0023
CVE-2007-0023
Description
The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa applications attempt to notify the user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
- (no CPE)range: = 10.4.8
Patches
Vulnerability mechanics
References
12- projects.info-pull.com/moab/MOAB-22-01-2007.htmlnvdExploitVendor Advisory
- www.kb.cert.org/vuls/id/315856nvdUS Government Resource
- www.us-cert.gov/cas/techalerts/TA07-047A.htmlnvdUS Government Resource
- docs.info.apple.com/article.htmlnvd
- lists.apple.com/archives/Security-announce/2007/Feb/msg00000.htmlnvd
- secunia.com/advisories/23846nvd
- secunia.com/advisories/24198nvd
- securitytracker.com/idnvd
- www.osvdb.org/32695nvd
- www.securityfocus.com/bid/22188nvd
- www.vupen.com/english/advisories/2007/0074nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/31676nvd
News mentions
0No linked articles in our index yet.