3 matches found
CVE-2017-15357
creationtimestamp| type| source ---|---|--- 2017-12-06 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43218...
CVE-2017-15357
The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to gain root privileges via a symlink attack on the updater binary itself...
CVE-2017-15357
The CVE-2017-15357 entry concerns Haystack Software Arq for Mac (auto-updater). The vulnerability is in the updater’s setpermissions function, which can race via a symlink to grant root privileges by manipulating the updater binary itself. Affected releases are Arq for Mac before 5.9.7. Impact is...