DISQUS

Website
http://www.matasano.com/log
Original page
http://www.matasano.com/log/530/matasano-advisory-macos-x-mach-exception-server-privilege-escalation/
Subscribe
All Comments
Community
Top Commenters
- Press Controls
  3 comments · 2 points
- ChrisMtso
  12 comments · 1 points
- Eric Monti
  11 comments · 1 points
- StatlerAndWaldorf
  12 comments · 3 points
- Dave G.
  7 comments · 1 points
Popular Threads

ilja · 3 years ago

there's been a public exploit out for this bug for about a year I think. Nice apple finally fixed it :)
Dino · 3 years ago

Hello Ilja,

I wouldn't be surprised if there are some way older slightly less-than-public exploits for it also, the bug has been around for a long while. Once I get NeXTSTEP 3.3 running in a VM, I'll see if they had the bug also :).
Nate · 3 years ago

Vendor disclosure's not broken!
Steve Christey · 3 years ago

Great work. Privilege chaining issues are cool.
rjohnson · 3 years ago

Nemo published some related work in Uninformed back in March. He did a good job of explaining the core fundamentals of the Mach subsystem in OSX and demonstrated various methods of subverting the BSD security features using the Mach subsystem. Definitely a good read.