Italian Teenager Uncovers 2 Zero Day Vulnerabilities in Apple OS X

Advertisement
By Manish Singh | Updated: 17 August 2015 19:14 IST

Less than a week after Apple released a set of security patches for OS X, two new vulnerabilities are being reported in its desktop operating system. An Italian teenager claims to have found two vulnerabilities, which if exploited, could give attackers remote access to the OS X computer.

Luca Todesco, an 18-year-old, has posted details on GitHub about the exploit he has created. The exploit utilises two bugs that cause a memory corruption in OS X's kernel and facilitates root access. This memory corruption can be used to bypass kernel address space layout randomisation, the mechanism which is responsible for preventing exploit codes from executing.

Advertisement

The vulnerability affects OS X Mavericks v10.9.5 to OS X Yosemite v10.10.5. OS El Capitan v10.11, which is currently in beta, isn't affected by the said vulnerabilities. Todesco says that he notified Apple a few hours before acknowledging the existence of vulnerabilities to public. "This is not due to me having issues with Apple's patch policies/time frames, as others have incorrectly reported," he told PC World.

While Todesco has released a patch called NULLGuard to resolve the vulnerabilities, we would suggest you to wait for the official patches from Apple to arrive before taking any step.

Advertisement

Apple last week along with the release of OS X Yosemite v10.10.5 - which brought stability and compatibility fixes - also released four security patches for OS X, Safari Web browser, and old generation iPhone models and old iPod models. One of the vulnerabilities that Apple patched last week was the infamous DYLD glitch, which if exploited, allowed an attacker to gain root access to the system.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. iPhone 18 Pro Max Could Get a New Sony Sensor With Variable Aperture Tech
  2. Oppo K15 Launch Date Confirmed; Key Specifications Revealed Ahead of Debut
  3. Apple Back to School Sale: Grab These Deals on MacBook, iPad Models
  4. Lava Virat V1 5G, Virat V1 Key Specifications Confirmed Before India Launch
  5. OnePlus Exits US, Europe, Continues Operations in India: 5 Things to Know
  6. Tecno Camon 50 Ultra 5G With a 6,500mAh Battery Debuts in India: See Price
  7. Here's How Much the iQOO Z11 Lite Could Cost in India
  1. iPhone 18 Pro Max Diagnostics Log Reportedly Reveals Variable Aperture Camera, Sony Sensor Upgrade
  2. Vivo X500 Ultra Leak Suggests Three 200-Megapixel Telephoto Sensors Under Testing
  3. iQOO Z11 Lite Price Range in India, Key Specifications Revealed Ahead of Official Launch
  4. Lava Virat V1 5G, Virat V1 Specifications Revealed Ahead of July 24 India Launch
  5. Oppo K15 Launch Date Confirmed; Key Specifications Revealed Ahead of Debut
  6. WhatsApp Usernames Are Now Reportedly Available for Some Android and iOS Users
  7. Meta Introduces New Parental Alerts for Teen Suicide and Self-Harm Conversations
  8. GTA 6 Had 'Strongest Pre-Order Campaign on Record', on Track to Generate Up to $5.2 Billion in First Week
  9. Android 17 QPR1 Beta 7 Update Brings Refinements, Resolves Battery Share Bug in Quick Settings
  10. Nothing Becomes India's Fastest-Growing Brand Amid Smartphone Market Slowdown in Q2 2026: Counterpoint
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.