Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiHyungSeok Han (DaramG) @TheoriZDI-20-587
HistoryMay 06, 2020 - 12:00 a.m.

Apple macOS printtool Daemon Improper Input Validation Privilege Escalation Vulnerability

2020-05-0600:00:00
HyungSeok Han (DaramG) @Theori
www.zerodayinitiative.com
34

EPSS

0

Percentile

15.9%

JSON

This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the printtool daemon. The issue results from the lack of proper validation of printer icon data prior to further processing. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of root.

Related

cvelist 1
nvd 1
cve 1
prion 1
nessus 1
apple 2
cvelist
cvelist
CVE-2020-3915
2020-10-22 17:47:34
nvd
nvd
CVE-2020-3915
2020-10-22 18:15:13
cve
cve
CVE-2020-3915
2020-10-22 18:15:13
prion
prion
Path traversal
2020-10-22 18:15:00
nessus
nessus
macOS 10.15.x < 10.15.4 / 10.14.x < 10.14.6 Security Update 2020-002 / 10.13.x < 10.13.6 Security Update 2020-002
2020-03-27 00:00:00
apple
apple
About the security content of macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra
2020-03-24 00:00:00
About the security content of macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra - Apple Support
2020-12-15 06:13:57

EPSS

0

Percentile

15.9%

JSON
Related for ZDI-20-587
cvelist1nvd1cve1prion1nessus1apple2