| Título | iHongRen pptp-vpn v1.0.1 Local Privilege escalation to root via XPC |
|---|
| Descrição | The `com.cxy.PPTPVPN.HelpTool` privileged helper (macOS) accepts any incoming NSXPCConnection without verifying the client identity. The helper exports an interface that allows callers to run arbitrary shell commands using `NSTask`, `system()` and `NSAppleScript`. A local attacker who can connect to the helper’s Mach service (`com.cxy.PPTPVPN.HelpTool`) can execute commands with the helper’s privileges (root). This enables local privilege escalation and arbitrary code execution as the helper user. |
|---|
| Fonte | ⚠️ https://github.com/SwayZGl1tZyyy/n-days/blob/main/pptp-vpn/README.md |
|---|
| Utilizador | SwayZGl1tZyyy (UID 88771) |
|---|
| Submissão | 16/09/2025 04h08 (há 7 meses) |
|---|
| Moderação | 28/09/2025 08h13 (12 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 326210 [iHongRen pptp-vpn 1.0/1.0.1 em macOS XPC Service HelpTool/HelperTool.m shouldAcceptNewConnection Autenticação fraca] |
|---|
| Pontos | 20 |
|---|