OS X Zero-Day Exploit Lets Attackers Gain Root Access

Advertisement
By Manish Singh | Updated: 4 August 2015 19:02 IST
OS X Zero-Day Exploit Lets Attackers Gain Root Access

A zero-day vulnerability has been revealed in Apple's OS X 10.10 that can give attackers root access to the system. Once the root access has been gained, attackers can of course do pretty much anything on the system. The vulnerability has been reportedly been patched in the first beta versions of OS X 10.11 El Capitan but not in the current OS X 10.10.4 and 10.10.5 developer release.

The bug resides in the new error-logging feature which Apple introduced with OS X 10.10 Yosemite. The code lacks the OS X dynamic linker dyld, an integral part of an operating system that links and loads shared libraries needed by executable programs. Without it, attackers are able to open and create files without needing any password permission from the administrator. The first exploit method to take advantage of the vulnerability has been found.

On Monday, Malwarebytes researcher Adam Thomas reported the exploit after he found the sudoers - the files that decide which users are permitted to have the root access in a Unix shell - had been modified on his test system by an adware installer.

The vulnerability has piqued the interest of attackers. Malwarebytes reports that attackers are using a new malicious installer - called VSInstaller - to infect Macs with VSearch, Genieo and MacKeeper adwares. Once that is done, it is able to download and install more malicious codes from the Web.

Advertisement

VSInstaller can be spotted in a hidden directory of the adware image. The DYLD_PRINT_TO_FILE vulnerability was first disclosed by security researcher Stefan Esser, and Thomas claims Esser did not inform Apple about the vulnerability first. He adds that Apple was informed by another researcher earlier. Esser has created a patch fixing the vulnerability, but until Apple releases an official patch for OS X 10.10.4 and 10.10.5 beta, most users don't have any other choice but to wait.

 

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Advertisement

Related Stories

Popular Mobile Brands
  1. Nothing Phone 3 Price, Colour Options Tipped Ahead of Global Debut
  2. Realme C71 With 6,300mAh Battery Goes Official: Price, Specifications
  3. NxtQuantum's AI+ Nova 2 5G Alleged Live Image Surfaces Online
  4. Google Pixel 10 Series Reportedly Set to Launch on August 20
  5. WhatsApp May Soon Let You Copy Specific Parts of a Message
  6. Vivo Y19s Pro With 6,000mAh Battery, 50-Megapixel Main Camera Launched
  7. NxtQuantum to Launch AI+ Smartphones in India By the End of June
  8. Microsoft Lets EU Users Uninstall Store, Disables Prompts to Use Edge
  1. Samsung Galaxy Z Fold 7 Spotted on WPC Database With Qi 2 Charging Support Like the Galaxy S25 Series
  2. OnePlus Ace 6, OnePlus Ace 6 Pro Tipped to Debut With Snapdragon 8 Series Chips
  3. Vivo Y19s Pro With 6,000mAh Battery, 50-Megapixel Rear Camera Launched: Price, Features
  4. Samsung Galaxy Ring 2 Reportedly in Development, but 2025 Launch Unlikely
  5. Redmi Pad 2 Launch Date Announced; Confirmed to Feature 9,000mAh Battery
  6. NxtQuantum's AI+ Nova 2 5G Alleged Live Images Surfaces Online; Shows Dual Rear Camer Unit
  7. Meta Said to Be Aiming to Fully Automate Advertising With AI by 2026
  8. Robinhood Acquires Bitstamp for $200 Million, Adds Over 50 Licences to Network
  9. Microsoft Windows Users in Europe Can Now Uninstall Microsoft Store, Disable Microsoft Edge Default Prompts
  10. Microsoft Cuts Hundreds More Jobs After Firing 6,000 Last Month
Gadgets 360 is available in
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.