October 09, 2019 Mohit Kumar
A 7-year-old critical remote code execution vulnerability has been discovered in iTerm2 macOS terminal emulator app—one of the most popular open source replacements for Mac's built-in terminal app.
Tracked as CVE-2019-9535, the vulnerability in iTerm2 was discovered as part of an independent security audit funded by the Mozilla Open Source Support Program (MOSS) and conducted by cybersecurity firm Radically Open Security (ROS).
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9535
CVE - CVE-2019-9535
20190301 Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
cve.mitre.org
"MOSS selected iTerm2 for a security audit because it processes untrusted data, and it is widely used, including by high-risk targets (like developers and system administrators)," Mozilla says.
According to a blog post published today by Mozilla, the RCE flaw resides in the tmux integration feature of iTerm2, which, if exploited, could allow an attacker to execute arbitrary commands by providing malicious output to the terminal.
As shown in the video demonstration, potential attack vectors for this vulnerability include connecting to an attacker-controlled malicious SSH server, using commands like curl to fetch a malicious website, or using tail -f to follow a log file containing some malicious content.
Besides this, the flaw can also be triggered using command-line utilities by tricking them into printing attacker-controlled content, eventually allowing attackers to execute arbitrary commands on the user's Mac computer.
"Typically, this vulnerability would require some degree of user interaction or trickery; but because it can be exploited via commands generally considered safe, there is a high degree of concern about the potential impact," Mozilla warns.
The vulnerability affects iTerm2 versions up to and including 3.3.5 and has recently been patched with the release of iTerm2 3.3.6, which users can download manually or check for updates within your installed apps menu.
Source for https://thehackernews.com/2019/10/iterm2-macos-terminal-rce.html
7-Year-Old Critical RCE Flaw Found in Popular iTerm2 macOS Terminal App
A 7-year-old critical remote code execution vulnerability has been discovered in iTerm2 macOS terminal emulator app.
thehackernews.com
'1Day 1News' 카테고리의 다른 글
| Apple iTunes and iCloud for Windows 0-Day Exploited in Ransomware Attacks (0) | 2019.10.11 |
|---|---|
| 맥OS의 터미널 에뮬레이터 아이텀2에서 치명적인 취약점 발견 (0) | 2019.10.10 |
| MS 10월 보안 위협에 따른 정기 보안 업데이트 권고 (0) | 2019.10.10 |
| Microsoft Releases October 2019 Patch Tuesday Updates (0) | 2019.10.10 |
| [데일리시큐]엘라스틱서치 데이터베이스 허술한 보안으로 中 취업자 3천300만명 개인정보 유출 (0) | 2019.10.07 |
