Evernote Fixes Remote Code Execution Vulnerability in macOS App
August 22nd, 2019 📆 | 1656 Views ⚑
A local file path traversal vulnerability which allows attackers to run apps or files stored locally on their targets’ Macs
Browsing the "macos" Tag
Tagged with: evernote • execution • fixes • macos • remote • vulnerability
Apple Bug Bounty Program Expands To Include MacOS and Others
August 11th, 2019 📆 | 2656 Views ⚑
Here comes good news for all researchers who demanded bug bounties for MacOS. Three years back, at Black Hat USA
Tagged with: apple • bounty • expands • include • macos • others • program
Skype: Mensch hört mit! // Neues Bug Bounty-Programm für MacOS – Wochenrückblick KW32
August 9th, 2019 📆 | 8298 Views ⚑
Künstliche Intelligenz und Machine Learning – das sind laut Microsoft die Zutaten, aus denen Skype Translate besteht. Was allerdings nicht
Tagged with: bounty • macos • mensch • neues • programm • skype • wochenruckblick
Collect, Process, And Hunt With Host Based Data From MacOS, Windows, And Linux
August 8th, 2019 📆 | 6901 Views ⚑
(pronounced “SKAH-Dee”: similar to Scotty but with a d sound) is a giantess and goddess of hunting in Norse mythology
Tagged with: based • collect • linux • macos • process • windows
O’Grady’s PowerPage » Apple reportedly set to announce iOS, macOS bug bounty programs starting later this month
August 8th, 2019 📆 | 6541 Views ⚑
Posted by: Chris Barylick Date: Wednesday, August 7th, 2019, 03:41 Category: Apple, Hack, iOS, iPhone, iPhone, Mac, macOS, News, privacy,
Tagged with: announce • apple • bounty • grady • macos • powerpage • reportedly
Apple Giving Special iPhones for Bug Testing Along With macOS Bug Bounty Program
August 7th, 2019 📆 | 3821 Views ⚑
Apple will be giving security researchers special iPhones for better testing of potential weaknesses and vulnerabilities. According to Forbes, Apple
Tagged with: along • apple • giving • iphones • macos • special • testing
macOS iMessage – Heap Overflow when Deserializing
August 5th, 2019 📆 | 2033 Views ⚑
There is a heap overflow in NSURL initWithCoder:] that can be reached via iMessage and likely other paths. When an
Tagged with: deserializing • imessage • macos • overflow
macOS / iOS JavaScriptCore – JSValue Use-After-Free in ValueProfiles
July 30th, 2019 📆 | 1588 Views ⚑
While fuzzing JSC, I encountered the following JS program which crashes JSC from current HEAD and release (/System/Library/Frameworks/JavaScriptCore.framework/Resources/jsc): // Run
Tagged with: after • javascriptcore • jsvalue • macos • valueprofiles
macOS / iOS JavaScriptCore – Loop-Invariant Code Motion (LICM) Leaves Object Property Access Unguarded
July 30th, 2019 📆 | 4781 Views ⚑
While fuzzing JavaScriptCore, I encountered the following (modified and commented) JavaScript program which crashes jsc from current HEAD and release
Tagged with: invariant • javascriptcore • leaves • macos • motion • object • property
macOS / iOS NSKeyedUnarchiver – Use-After-Free of ObjC Objects when Unarchiving OITSUIntDictionary Instances
July 30th, 2019 📆 | 6529 Views ⚑
When deserializing NSObjects with the NSArchiver API 1], one can supply a whitelist of classes that are allowed to be
Tagged with: after • instances • macos • nskeyedunarchiver • objects • oitsuintdictionary • unarchiving
Apple macOS up to 10.14.5 WebKit memory corruption
July 24th, 2019 📆 | 5885 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 6.0 $5k-$25k A vulnerability classified as critical was found in Apple macOS
Tagged with: apple • corruption • macos • memory • webkit
Apple macOS up to 10.14.5 WebKit memory corruption
July 24th, 2019 📆 | 6733 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 6.0 $5k-$25k A vulnerability, which was classified as critical, has been found
Tagged with: apple • corruption • macos • memory • webkit
Apple macOS up to 10.14.5 WebKit memory corruption
July 24th, 2019 📆 | 6473 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 6.0 $5k-$25k A vulnerability, which was classified as critical, was found in
Tagged with: apple • corruption • macos • memory • webkit
Mozilla Firefox/Thunderbird/Firefox ESR on MacOS Hyperthreading Spectre information disclosure
July 24th, 2019 📆 | 2342 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 4.1 $0-$5k A vulnerability, which was classified as problematic, was found in
Tagged with: firefox • hyperthreading • macos • mozilla • spectre • thunderbird
Apple Released Security Updates for iOS, Safari, macOS , tvOS, watchOS
July 23rd, 2019 📆 | 5761 Views ⚑
Apple released security updates for products and fixed several vulnerabilities with the new release of iOS 12.4, tvOS 12.4, Safari
Tagged with: apple • macos • released • safari • security • updates • watchos
Bluetooth Flaw Lets Hackers Track Windows, macOS and iOS Devices
July 17th, 2019 📆 | 2414 Views ⚑
Bluetooth is found in nearly every modern gadget, which is why a newly discovered flaw in the communication protocol should
Tagged with: bluetooth • devices • hackers • macos • track • windows
London Trust Media Private Internet Access v82 on MacOS openvpn_launcher Environment Variable privilege escalation
July 12th, 2019 📆 | 8232 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 7.8 $0-$5k A vulnerability classified as critical has been found in London
Tagged with: access • internet • london • macos • media • private • trust
London Trust Media Private Internet Access v82 on MacOS /tmp/pia_upscript.sh privilege escalation
July 12th, 2019 📆 | 7060 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 7.8 $0-$5k A vulnerability classified as critical was found in London Trust
Tagged with: access • internet • london • macos • media • private • trust
Zoom Client up to 4.4.1 on MacOS ZoomOpener Daemon URL Remote Code Execution
July 12th, 2019 📆 | 3395 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 6.0 $0-$5k A vulnerability was found in Zoom Client up to 4.4.1
Tagged with: client • daemon • execution • macos • remote • zoomopener
Zoom Client up to 4.4.1 on MacOS Service Port 19421 launch Request denial of service
July 9th, 2019 📆 | 2092 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 3.2 $0-$5k A vulnerability was found in Zoom Client up to 4.4.1
Tagged with: 19421 • client • denial • launch • macos • request • service
Zoom/RingCentral Client on MacOS Web Server Video Call privilege escalation
July 9th, 2019 📆 | 6015 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 5.5 $0-$5k A vulnerability was found in Zoom/RingCentral Client on MacOS (the
Tagged with: client • escalation • macos • privilege • ringcentral • server • video
hide.me up to 2.4.3 on macOS Helper Tool me_hide_vpnhelper.Helper privilege escalation
July 8th, 2019 📆 | 2839 Views ⚑
CVSS Meta Temp Score Current Exploit Price (≈) 7.5 $0-$5k A vulnerability has been found in hide.me up to 2.4.3
Tagged with: escalation • helper • macos • privilege • vpnhelper
10 times malware proved that MacOS isn’t bulletproof
July 8th, 2019 📆 | 6478 Views ⚑
In the first six months of 2019 there have been at least ten types of malware specifically targeting macOS, indicating
Tagged with: bulletproof • macos • malware • proved • times
New MacOS Malware Discovered
July 3rd, 2019 📆 | 3826 Views ⚑
A wave of new MacOS malware over the past month includes a zero-day exploit and other attack code. A wave
Tagged with: discovered • macos • malware
-
-
Popular
Gmail’s Confidential Mode for G Suite Goes… August 19, 2019 Google announced today that Gmail's confidential mode will be launched…
Hack computers to steal someone’s identity in… August 8, 2019 Institute For Ethical Hacking Course and Ethical Hacking Training in Pune –…
Satoshi Nakamoto is going to reveal his identity and… August 18, 2019 A CCN report says that Satoshi Nakamoto, who is a…
State Farm hit by data breach August 8, 2019 State Farm – the largest property and casualty insurance provider…
Trump Critique of Cryptocurrency Sends Bitcoin Price Lower August 25, 2019 The value of Bitcoin recently dropped below $10,000 after President…
Hedge funds are making millions off Europe’s… August 20, 2019 Hedge funds have booked nine-figure profits trading carbon-credits tied to…
Capital One Data Breach Hits 100 Million People:… July 30, 2019 A solo hacker broke into the servers of Capital One…
Comments