Lucene search
AnonymousZDI-18-1328HistoryOct 30, 2018 - 12:00 a.m.
Apple macOS mDNSOffloadUserClient Race Condition Privilege Escalation Vulnerability
2018-10-3000:00:00
Anonymous
www.zerodayinitiative.com
37
EPSS
0.001
Percentile
46.9%
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the mDNSOffloadUserClient IOkit user client. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to escalate privileges and execute code as the kernel.
References
Related
cvelist
cvelist
CVE-2018-4326
2019-04-03 17:43:15
nvd
nvd
CVE-2018-4326
2019-04-03 18:29:07
cve
cve
CVE-2018-4326
2019-04-03 18:29:07
prion
prion
Memory corruption
2019-04-03 18:29:00
openvas
openvas
Apple Mac OS X Security Updates (HT209193)-06
2018-11-02 00:00:00
Apple Mac OS X Security Update (HT209139)
2022-08-04 00:00:00
nessus
nessus
macOS 10.13.6 Multiple Vulnerabilities (Security Update 2018-002)
2018-10-31 00:00:00
macOS < 10.14 Multiple Vulnerabilities
2018-10-18 00:00:00
macOS and Mac OS X Multiple Vulnerabilities (Security Update 2018-005)
2018-10-31 00:00:00
apple
apple
About the security content of iOS 12
2018-09-17 00:00:00
About the security content of iOS 12 - Apple Support
2019-09-17 10:55:07
About the security content of macOS Mojave 10.14
2018-09-24 00:00:00