CactusVPN for MacOS | Security Research Advisory | VerSprite

Home | Research | Resources | Advisories | CactusVPN for MacOS

CactusVPN for MacOS

Root Privilege Escalation Vulnerability | XPC

CVE ID

CVE-2018-7493

VENDOR

CactusVPN

PRODUCT

CactusVPN

Product version

< 6.0

Vulnerability Details

CactusVPN for MacOS suffers from a root privilege escalation vulnerability in its privileged helper tool. The privileged helper tool implements an XPC interface, which allows arbitrary applications to execute system commands as root.

Learn More →

Vendor response

Vendor has released an update.

Disclosure timeline

02-21-2018 - Vendor disclosure
02-23-2018 - Vendor response
02-27-2018 - Vendor submitted update for testing
03-02-2018 - VerSprite validated the vulnerability had been fixed
03-05-2018 - Vendor released update
03-05-2018 - Vendor notified of advisory release

Digging up the Past: OS X File Versioning

Blog Post

In this case study of OS X digital forensics, we were tasked to recover the version history of documents created using Apple’s TextEdit application. It began with a request for us to recover the version history of documents created using Apple’s TextEdit application.

Read more

IPVanish for MacOS

Advisory

IPVanish for MacOS suffers from a root privilege escalation vulnerability. The com.ipvanish.osx.vpnhelper LaunchDaemon implements an insecure XPC service that could allow an attacker to execute arbitrary code as the root user.

Read more

MacKeeper

Advisory

MacKeeper suffers from a root privilege escalation vulnerability through its com.mackeeper.AdwareAnalyzer.AdwareAnalyzerPrivilegedHelper component. The AdwareAnalzyerPrivilegedHelper tool implements an XPC service that allows an unprivileged application to connect and execute shell scripts as the root user.

Read more

We are an international squad of professionals working as one.

Email

[email protected]

logos