720 matches found
CVE-2018-10406
An issue was discovered in Yelp OSXCollector. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicious...
CVE-2018-10408
An issue was discovered in VirusTotal. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicious unsigned co...
CVE-2018-10407
An issue was discovered in Carbon Black Cb Response. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicio...
CVE-2018-10405
An issue was discovered in Google Santa and molcodesignchecker. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but...
CVE-2018-10404
An issue was discovered in Objective-See KnockKnock, LuLu, TaskExplorer, WhatsYourSign, and procInfo. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe...
PYSEC-2018-95
An issue was discovered in Yelp OSXCollector. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicious...
CVE-2018-10406
An issue was discovered in Yelp OSXCollector. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicious...
CVE-2018-10406
CVE-2018-10406 — Yelp OSXCollector : Affected product is Yelp OSXCollector. The vulnerability describes that a maliciously crafted Universal/fat binary can bypass third-party code signing checks by not completing full inspection of the multi-architecture binary, causing the tool to report that th...
CVE-2018-10407
CVE-2018-10407 affects Carbon Black Cb Response. A maliciously crafted Universal/Fat binary can bypass third‑party code signing checks, causing the unsigned payload to execute while the signed Apple image is treated as legitimate. Exploitation relies on embedding unsigned Mach‑O binaries inside a...
CVE-2018-10404
An issue was discovered in Objective-See KnockKnock, LuLu, TaskExplorer, WhatsYourSign, and procInfo. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe...
CVE-2018-10405
An issue was discovered in Google Santa and molcodesignchecker. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but...
CVE-2018-10406
An issue was discovered in Yelp OSXCollector. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicious...
CVE-2018-10407
An issue was discovered in Carbon Black Cb Response. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicio...
CVE-2018-10408
An issue was discovered in VirusTotal. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicious unsigned co...
CVE-2018-10408
CVE-2018-10408 concerns VirusTotal and other macOS third‑party tools where a maliciously crafted Universal/Fat binary can bypass code-signing checks and cause unsigned malware to execute. The root cause is an inconsistency in how Mach‑O files are verified within Fat/Universal binaries: if the Fat...
CVE-2018-10405
CVE-2018-10405 concerns Google Santa and molcodesignchecker, where a maliciously crafted Universal/Fat binary can bypass third‑party code signing checks. The vulnerability arises from incomplete inspection of Fat binaries, allowing an unsigned malicious payload to be executed while a legitimate A...
CVE-2018-10404
CVE-2018-10404 affects Objective-See KnockKnock, LuLu, TaskExplorer, WhatsYourSign and procInfo. A maliciously crafted Universal/Fat binary can bypass third‑party code signing checks, causing unsigned code to be executed while a legitimate Apple-signed Mach‑O in a Fat/Universal bundle is believed...
CVE-2018-10403
CVE-2018-10403 affects F-Secure XFENCE and Little Flocker, describing a vulnerability where a maliciously crafted Universal/Fat binary can bypass third-party code-signing checks, causing unsigned code to execute while appearing signed by Apple. Root cause: improper handling of multi-architecture ...
Google Santa Code Signing Bypass (macOS)
The installed version of Google Santa is less than 0.9.25 and is therefore vulnerable to allowing execution of malicious binaries due to accepting forged Apple signatures. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid110519; scriptversion"1.6";...
Bypass Glitch Allows Malware to Masquerade as Legit Apple Files
Masquerading as an official Apple system file sounds like a wonderful way for malware to worm its way onto Macs – and a recently discovered code-signing bypass flaw allows bad code to do just that. The way some developers have implemented Apple’s official code-signing API can be exploited by...