Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Intego Personal Backup Task File Privilege Escalation
Vulnerability Description
Intego Personal Backup, a macOS backup utility that allows users to create scheduled backups and bootable system clones, contains a local privilege escalation vulnerability. Backup task definitions are stored in a location writable by non-privileged users while being processed with elevated privileges. By crafting a malicious serialized task file, a local attacker can trigger arbitrary file writes to sensitive system locations, leading to privilege escalation to root.
CVSS Information
N/A
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Vulnerability Title
Intego Personal Backup 后置链接漏洞
Vulnerability Description
Intego Personal Backup是Intego公司的一个备份工具。 Intego Personal Backup存在后置链接漏洞,该漏洞源于备份任务定义存储在非特权用户可写的位置,但以提升的权限进行处理,可能导致本地攻击者通过特制的序列化任务文件触发任意文件写入和权限提升。
CVSS Information
N/A
Vulnerability Type
N/A