A Privilege Escalation vulnerability exists in Viscosity 1.4.1 on Mac OS X due to a path name validation issue in the setuid-set ViscosityHelper binary, which could let a remote malicious user execute arbitrary code
References
Link | Resource |
---|---|
http://www.exploit-db.com/exploits/24579 | Exploit Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/55002 | Third Party Advisory VDB Entry |
https://packetstormsecurity.com/files/120643/Viscosity-setuid-set-ViscosityHelper-Privilege-Escalation.html | Exploit Third Party Advisory VDB Entry |
https://www.sparklabs.com/viscosity/releasenotes/mac/ | Release Notes Vendor Advisory |
Configurations
History
No history.
Information
Published : 2020-01-10 20:15
Updated : 2024-02-28 17:28
NVD link : CVE-2012-4284
Mitre link : CVE-2012-4284
CVE.ORG link : CVE-2012-4284
JSON object : View
Products Affected
sparklabs
- viscosity
CWE