Wednesday, April 22, 2015

Apple 'Rootpipe' security vulnerability still prevalent following patch

from techspot.com
Apple issued an OS X Yosemite update earlier this month which remedied a flaw known as Rootpipe. First discovered last October by security researcher Emil Kvarnhammar (yet having existed since at least 2011), the flaw allows bad actors to gain root access to a system through a backdoor in the system preferences app.
A second security researcher, Patrick Wardle, attempted to exploit the vulnerability on a patched machine and was apparently able to pull it off.
In a post on Objective-See, Wardle said he was on a return flight from a conference when he stumbled upon what he describes as a novel, yet trivial way for any local user to re-abuse Rootpipe. Wardle didn’t provide the technical details of the attack in the spirit of responsible disclosure (except to Apple, of course) but wanted other OS X users to be aware of the risk.
In an e-mailed statement to Forbes, Wardle said he was tempted to walk into an Apple store and try the exploit on a display model but stuck to testing it on his personal laptop.
Wardle, currently the director of research and development at security firm Synack, has made a name for himself in the security community by presenting at conferences including DefCon, VirusBulletin, ShmooCon and CanSecW.
Apple could have its hands full with Rootpipe. Another security researcher, Pedro Vila├ža, told the publication that the original fix was doomed since its release because there are so many ways to bypass it “due to the wrong fix design.”
Apple has also been criticized for only issuing a patch for OS X Yosemite, effectively leaving a large number of Mac users vulnerable.

2 comments:

  1. Are Apple fans just to proud to admit they have vulnerabilities? I'm not bashing, I'm seriously asking. If I paid that much more money for a system, I would want it to be rock solid. Otherwise, I surf smart and make sure I'm protected.

    ReplyDelete
  2. A Satisfied CustomerApril 24, 2015 at 7:13 PM

    Say what you will about Apple and its "fans", but I personally use Apple products because, despite whatever real or theoretical shortcomings they may have, my personal experience with Apple products has been overwhelmingly positive and justifies the cost. YMMV.

    ReplyDelete