Rootpipe: you can get Apple Mac OS X Yosemite system the highest authority the serious vulnerability-vulnerability warning-the black bar safety net

2014-11-07T00:00:00
ID MYHACK58:62201455560
Type myhack58
Reporter 佚名
Modified 2014-11-07T00:00:00

Description

The Swedish security researchers recently discovered Apple OS X Yosemite system fatal vulnerability. The vulnerability can enable hackers on the target computer, elevated privileges, so that it is possible to obtain a system of the highest access permissions, that is, we usually say that the Root permission.

The vulnerability by the Swedish white-hat EmilKvarnhammar found, the vulnerability called Rootpipe is. Because Apple fix the vulnerabilities and to develop security patches requires a certain time, so EmilKvarnhammar now will not release more details, he will put the vulnerability details Save to 2 0 1 5 year 2 month and then published.

Can break through Apple's conventionalsecuritymechanism

By in Apple Mac OS X Yosemite on a system using this vulnerability, an attacker can break through Apple's conventionalsecuritymechanism-the password to confirm, and this mechanism is what is used to prevent some of try to the Root system of temporary backdoors.

Hack if you get the Root permissions of the system the highest authority, then he can feel free on your computer on any operation. Hackers may steal the victim's sensitive information such as passwords, Bank account information etc. Of course, if the hackers to say necessary, they may even on the entire computer system formatting, deleted the computer all important data.

This vulnerability in OS X 10.8, a 1 0. 9 and 1 0. 1 0 version to test on through, while the vulnerability is at least from 2 0 1 2 years it has existed.

Kvarnhammar gives an explanation he was the first to discover this vulnerability in the video:

[1] [2] next