Title:多款Apple产品libxpc组件缓冲区错误漏洞 (CVE-2018-4280) Description:Apple iOS等都是美国苹果(Apple)公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple tvOS是一套智能电视操作系统。Apple macOS High Sierra是一套专为Mac计算机所开发的专用操作系统。libxpc是其中的一个AppleXPC库的开源实现。 多款Apple产品中的libxpc组件存在缓冲区错误漏洞。攻击者可利用该漏洞获取提升的权限。以下产品和版本受到影响:Apple iOS 11.4.1之前版本;macOS High Sierra 10.13.6之
Description
CVE-2018-4280: Mach port replacement vulnerability in launchd on iOS 11.2.6 leading to sandbox escape, privilege escalation, and codesigning bypass.
File Snapshot
None
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.