HomeAdvisoriesCactusVPN for MacOS

CactusVPN for MacOS

Root Privilege Escalation | setuid

Previous AdvisoryNext Advisory

CVE ID

CVE-2018-7281

Vendor

CactusVPN

Product

CactusVPN

Product Version

CactusVPN for MacOS < 5.3.6

Vulnerability Details

The CactusVPN for MacOS contains a root privilege escalation vulnerability through a setuid root binary called runme. The binary takes a single command line argument and passes this to a system() call, thus allowing low privileged users to execute commands as root.

Learn more

Vendor Response

CactusVPN has remediated the vulnerability.

Disclosure Timeline

16.02.2018
Vendor contacted via Twitter
16.02.2018
Vendor contacted via Facebook
16.02.2018
Vendor response and disclosure
17.02.2018
Vendor responded that team is working on update
20.02.2018
VerSprite confirmed the ETA release of the patched sofware
20.02.2018
Vendor sent patched software for validation
21.02.2018
VerSprite validated the vulnerability had been fixed
21.02.2018
Vendor notified of advisory release

Previous AdvisoryNext Advisory

A Look at RACI Models within Application Threat Modeling

Offensive Security

DevSecOps

GRC Services

Threat Intelligence

VS-Labs Security Research

Envisions Geopolitical Threat Report:

By Industry

Chrome Exploitation: How to easily launch a Chrome RCE+SBX exploit chain with one command

Security Resources

Who We Are