CVE-2020–9934: Bypassing TCC
https://objective-see.com/blog/blog_0x4C.html [objective-see.com]
2020-07-30 16:50
tags:
auth
exploit
mac
security
The Transparency, Consent, and Control (TCC) Framework is an Apple subsystem which denies installed applications access to ‘sensitive’ user data without explicit permission from the user (generally in the form of a pop-up message)
source: L
Death by vmmap
https://objective-see.com/blog/blog_0x3E.html [objective-see.com]
2019-03-20 14:42
tags:
mac
swtools
systems
In this blog post, we dug into why (on macOS Mojave) executing vmmap against launchd (pid 1), deadlocks the entire system. In short, after vmmap has suspended launchd it (indirectly) attempts to ‘call’ into launchd via XPC. As launchd has been suspended (by vmmap), everything grinds to a halt.
source: L
Remote Mac Exploitation Via Custom URL Schemes
https://objective-see.com/blog/blog_0x38.html [objective-see.com]
2018-09-03 17:23
tags:
browser
fs
mac
malware
security
turtles
Which also means custom URL scheme handlers:
■ are registered automatically by macOS as soon as application (that “advertises” support for such handlers) hits the file-system
■ will trigger the execution of the (automatically registered) handler application, when the custom url scheme is invoked
Kind of obvious in hindsight, making things too easy leads to runaway.
source: L
A Remote iOS Bug
https://objective-see.com/blog/blog_0x34.html [objective-see.com]
2018-07-11 20:43
tags:
investigation
iphone
text
She claimed that any time she typed the word Taiwan or worse, received a message with a Taiwanese flag (🇹🇼) it would crash the application on her (fully patched) iOS device.
source: L
Why <blank> Gets You Root
https://objective-see.com/blog/blog_0x24.html [objective-see.com]
2017-11-30 19:39
tags:
auth
exploit
investigation
mac
security
During this upgrade, od_verify_crypt_password returns a non-zero value, and an error code which is not checked
source: L
Two Bugs, One Func()
https://objective-see.com/blog/blog_0x1A.html [objective-see.com]
2017-04-12 15:53
tags:
bugfix
c
cpu
exploit
mac
programming
security