![]() Normal user on macOS(with SIP enabled) can locally exploit this vulnerabilities chain to elevate privilege to the ROOT without a user being aware. ![]() ![]() The only requirement needed to trigger the vulnerabilities is that Adobe Acrobat Reader DC has been installed. Today, Adobe Acrobat Reader DC for macOS patched three critical vulnerabilities(CVE-2020-9615, CVE-2020-9614, CVE-2020-9613) I reported. ![]() If you want to run a software update check, open the app, select Help –> Check for Update. You need to make sure that, if you have the software installed on your machine, that you’re running version 2020.009.20063 or later. The silver lining here is that Adobe has already updated Acrobat Reader to address the security flaws. This access can allow a malicious attacker the ability to reach sensitive data on a machine, so it’s important that users of Adobe’s Acrobat Reader update immediately. Security researcher Yuebin Sun works with Tencent, and he has discovered three security flaws within Adobe’s Acrobat Reader that allow for root privileges on Macs. A security researcher has discovered a trio of security flaws in Adobe’s Acrobat Reader software that can allow root privilege access.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |