Apple OS X 10.10 0-day Privilege Escalation Vulnerability
Apple OS X 10.10 0-day Privilege Escalation Vulnerability
Release date:
Updated on:
Affected Systems:
Apple OS X 10.10
Description:
OS x (formerly Mac OS X) is the latest version of Apple's exclusive operating system developed for Mac tower computers.
In OS X 10.10, The DYLD_PRINT_TO_FILE exploitation vulnerability exists in the implementation of some error log functions. After successful exploitation, attackers can use root privileges to execute shell commands and install malware and advertising software without account passwords.
<* Source: Malwarebytes
Link: http://news.softpedia.com/news/zero-day-vulnerability-in-mac-os-x-10-10-lets-hackers-install-malware-without-user-s-consent-488413.shtml
Http://www.freebuf.com/news/74180.html
*>
Suggestion:
Vendor patch:
Apple
-----
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.apple.com/support/downloads/
OS X details: click here
This article permanently updates the link address: