MacOS 320.whatis Script - Privilege Escalation

Exploit Title: MacOS 320.whatis Script - Privilege Escalation Exploit Author: Csaba Fitzl Vendor Homepage: https://support.apple.com/en-us/HT210722 Version: macOS Labelcom.sample.LoadProgramArguments /Applications/Scripts/sample.shRunAtLoad!-- """ shquickcontent = """...

MacOS 320.whatis Script - Privilege Escalation

Exploit Title: MacOS 320.whatis Script - Privilege Escalation Date: 2020-05-06 Exploit Author: Csaba Fitzl Vendor Homepage: https://support.apple.com/en-us/HT210722 Version: macOS Labelcom.sample.LoadProgramArguments /Applications/Scripts/sample.shRunAtLoad!-- """ shquickcontent = """...

macOS 320.whatis Script Privilege Escalation

Exploit Title: MacOS 320.whatis Script - Privilege Escalation Date: 2020-05-06 Exploit Author: Csaba Fitzl Vendor Homepage: https://support.apple.com/en-us/HT210722 Version: macOS Labelcom.sample.LoadProgramArguments /Applications/Scripts/sample.shRunAtLoad!-- """ shquickcontent = """...

Threat Analysis Unit (TAU) Threat Intelligence Notification: CrescentCore (macOS)

In June of 2019, researchers at Intego discovered a new Trojan for macOS systems which they named CrescentCore. Much like Shlayer and other common malware targeting macOS systems, CrescentCore is often delivered via a fake Adobe Flash Player installer or updater. This malware employs multiple...

Keybase: Privilege Escalation via Keybase Helper

A privilege escalation vulnerability exists within the KeybaseHelper application available when installing the Keybase Desktop Application on MacOS. The issue is exposed via a LaunchDaemon plist which is installed within /Library/LaunchDaemons/keybase.Helper.plist. This file is responsible for...

Privilege escalation

IPVanish 3.0.11 for macOS suffers from a root privilege escalation vulnerability. The com.ipvanish.osx.vpnhelper LaunchDaemon implements an insecure XPC service that could allow an attacker to execute arbitrary code as the root user. IPVanish uses a third-party library for converting xpcobjectt...

CVE-2018-10192

IPVanish 3.0.11 for macOS suffers from a root privilege escalation vulnerability. The com.ipvanish.osx.vpnhelper LaunchDaemon implements an insecure XPC service that could allow an attacker to execute arbitrary code as the root user. IPVanish uses a third-party library for converting xpcobjectt...

ZenMate for macOS com.zenmate.chron-xpc LaunchDaemon Type Obfuscation Vulnerability

ZenMate for macOS is a free VPN software for macOS-based platforms. com.zenmate.chron-xpc LaunchDaemon is one of the launch daemon components. A type-obfuscation vulnerability exists in the com.zenmate.chron-xpc LaunchDaemon component in version 1.5.4 of ZenMate for macOS. An attacker could explo...

CVE-2018-8076

ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron-xpc LaunchDaemon component. The LaunchDaemon implements an XPC service that uses an insecure XPC API for accessing data from an inbound XPC message. This could potentially result in an XPC object of t...

Type confusion

ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron-xpc LaunchDaemon component. The LaunchDaemon implements an XPC service that uses an insecure XPC API for accessing data from an inbound XPC message. This could potentially result in an XPC object of t...

CVE-2018-8076

ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron-xpc LaunchDaemon component. The LaunchDaemon implements an XPC service that uses an insecure XPC API for accessing data from an inbound XPC message. This could potentially result in an XPC object of t...

Privilege escalation

DISPUTED PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability. The software installs a privileged helper tool that runs as the root user. This privileged helper tool is installed as a LaunchDaemon and implements an XPC service. The XPC service is responsible for...

CVE-2018-7311

PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability. The software installs a privileged helper tool that runs as the root user. This privileged helper tool is installed as a LaunchDaemon and implements an XPC service. The XPC service is responsible for handling new...

CVE-2018-7311

PrivateVPN 2.0.31 for macOS contains a root privilege escalation via a privileged helper launched as a LaunchDaemon with an XPC service. The helper executes the openvpn binary located under /Applications/PrivateVPN.app/Contents/Resources to establish VPN connections; the binary can be overwritten...

CVE-2018-7311

PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability. The software installs a privileged helper tool that runs as the root user. This privileged helper tool is installed as a LaunchDaemon and implements an XPC service. The XPC service is responsible for handling new...

CVE-2018-6823

In the VPN client in Mailbutler Shimo before 4.1.5.1 on macOS, the com.feingeist.shimo.helper tool LaunchDaemon implements an unprotected XPC service that can be abused to execute scripts as root...

CVE-2018-6822

In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root...

Design/Logic Flaw

In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root...

CVE-2018-6822

In PureVPN 6.0.1 on macOS, HelperTool LaunchDaemon implements an unprotected XPC service that can be abused to execute system commands as root...

CVE-2018-6822

Affected software: PureVPN for macOS (v6.0.1). Vulnerability: HelperTool LaunchDaemon exposes an unprotected XPC service that can be abused to execute system commands as root. Impact: High; CVSSv3 base score 9.8 (CRITICAL). Privileges elevated to root with no user interaction. Exploitation status...