19 matches found
EUVD-2012-3660
Malware in sbrugna...
EUVD-2024-19960
Malicious code in bioql PyPI...
CVE-2024-22405
XADMaster is an objective-C library for archive and file unarchiving and extraction. When extracting a specially crafted zip archive XADMaster may not apply quarantine attribute correctly. Such behaviour may circumvent Gatekeeper checks on the system. Only macOS installations are affected. This...
Mac OS X Safari .webarchive File Format UXSS
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule 'Mac OS X Safari .webarchive File Format UXSS', 'Description' = %q Generates a .webarchive file for Mac OS X Safari that will attemp...
CVE-2024-22405 XADMaster may not apply quarantine attribute correctly to extracted files
XADMaster is an objective-C library for archive and file unarchiving and extraction. When extracting a specially crafted zip archive XADMaster may not apply quarantine attribute correctly. Such behaviour may circumvent Gatekeeper checks on the system. Only macOS installations are affected. This...
CVE-2024-22405 XADMaster may not apply quarantine attribute correctly to extracted files
XADMaster is an objective-C library for archive and file unarchiving and extraction. When extracting a specially crafted zip archive XADMaster may not apply quarantine attribute correctly. Such behaviour may circumvent Gatekeeper checks on the system. Only macOS installations are affected. This...
XADMaster 安全漏洞
MacPaw XADMaster is a library from MacPaw Ukraine. A security vulnerability exists in XADMaster version 1.10.8, which stems from the fact that when extracting specially crafted zip archives, XADMaster may fail to apply the quarantine attribute correctly, potentially bypassing Gatekeeper's checks ...
PT-2024-19395 · Xadmaster · Xadmaster
Name of the Vulnerable Software and Affected Versions: XADMaster versions prior to 1.10.8 Description: XADMaster is an objective-C library for archive and file unarchiving and extraction. When extracting a specially crafted zip archive, XADMaster may not apply the quarantine attribute correctly,...
CVE-2022-3155
When saving or opening an email attachment on macOS, Thunderbird did not set attribute com.apple.quarantine on the received file. If the received file was an application and the user attempted to open it, then the application was started immediately without asking the user to confirm. This...
PT-2022-7701 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.7.2 macOS versions prior to 12.6.2 macOS versions prior to 13 Description: A logic issue was addressed with improved checks, allowing an app to bypass Gatekeeper checks. The Gatekeeper function automatically checks...
Gatekeeper Bypass Proof Of Concept
!/bin/zsh -e This script will create a zip file exploiting CVE-2021-1810 by creating a directory hierarchy deep enough for Archive Utility to fail setting quarantine attributes on certain files while also making some path names long enough to prevent Safari automating unzipping from unpacking the...
CVE-2021-40531
Sketch before 75 allows library feeds to be used to bypass file quarantine. Files are automatically downloaded and opened, without the com.apple.quarantine extended attribute. This results in remote code execution, as demonstrated by CommandString in a terminal profile to Terminal.app...
Basecamp: Lack of quarantine macOS attribute(com.apple.quarantine) leads multiple issues including RCE
Hi, basecamp team. HEY macOS client does not properly validate file uploads on its macOS inbox. That is because, by not setting the com.apple.quarantine attribute in the metadata of an executable file when it is uploaded, you allow the file to be executed on macOS without being checked by...
(0Day) (Pwn2Own) Apple macOS Quarantine Attribute Bypass Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of download...
Keybase: Keybase client: downloaded executables lack "com.apple.quarantine" meta-attribute [macOS]
Summary 1. Missing quarantine attribute for downloaded files allows remote attacker to send executable file that won't be checked by Gatekeeper codesign bypass. 2. Since sent executable files lack com.apple.quarantine meta-attribute, no alert about launching executable file from the web will be...
Mac OSX Safari 8.0.5 UXSS vulnerability technical analysis-vulnerability warning-the black bar safety net
Vulnerability description: The vulnerability affects version 6. 2. 6,7. 1. 6,8. 0. 61before the Apple Safari browser, the attacker can be through carefully constructed URLs to bypass the same origin policy any read the file. Vulnerability description: In the Safari browser, similar...
CVE-2012-3713
Apple Safari before 6.0.1 does not properly handle the Quarantine attribute of HTML documents, which allows user-assisted remote attackers to read arbitrary files by leveraging the presence of a downloaded document...
CVE-2012-3713
CVE-2012-3713 — Safari local file disclosure . Affected: Apple Safari before 6.0.1 on macOS. Root cause: Safari’s handling of the Quarantine attribute for downloaded HTML documents could fail to trigger safe mode, enabling a local file’s content to be read via a user-opened downloaded document. I...
CVE-2012-3713
Apple Safari before 6.0.1 does not properly handle the Quarantine attribute of HTML documents, which allows user-assisted remote attackers to read arbitrary files by leveraging the presence of a downloaded document...