Apple macOS is prone to a local privilege-escalation vulnerability.
Local attackers may exploit this issue to execute arbitrary code and gain root access on the affected system.
Information
Bugtraq ID: 102335Class: Design Error
CVE:
Remote: No
Local: Yes
Published: Jan 01 2018 12:00AM
Updated: Jan 01 2018 12:00AM
Credit: Siguza
Vulnerable: Apple macOS 0
Not Vulnerable:
Exploit
The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.
References:
- 15-Year-Old Apple macOS 0-Day Kernel Flaw Disclosed, Allows Root Access (thehackernews.com)
- Apple Home Page (Apple)
- IOHIDeous (github.io)