Google’s Project Zero Reveals Three OS X Vulnerabilities

Must Read

7Caps Free On-Screen Caps Lock Indicator Review

Many laptops and keyboards don't come with an indicator for your caps lock key. Num Lock is...

Are Lithium-Ion Batteries Recyclable?

Electric vehicles are growing every day, and they are certainly going to be the future of automotive...

NASA demonstrates its first all-electric aircraft

NASA has demonstrated it's first all-electric experimental which they have dubbed as the X-57 Maxwell. Its first...
Scott Hartleyhttps://www.sertmedia.com
My name is Scott Hartley I am from Nashville, TN, and love to cover topics related to the latest tech trends, social media, and cars!

Google’s Project Zero security team has revealed three vulnerabilities found in Apple’s OS X. Project Zero has a policy that simply states the software maker has 30 days in order to fix the bug or it will be made public. The reasoning is that in 30 days a company should be able to resolve any serious threats and if not this will motivate them to get it done.

Vulnerabilities

These vulnerabilities are definitely not the end all be all of computer vulnerabilities, but they can be quite troublesome. The first flaw that has been dubbed “OS X networkd”effective_audit_token” XPC type  confusion sandbox escape,” would allow someone to get around network settings that are set on the computer.

The second vulnerability code named “OS X IOKit kernel code execution due to NULL pointer dereference in IntelAccelerator” would allow a hacker to run a program and set it as a priority over all other items on the computer.

The third vulnerability “OS X IOKit kernel memory corruption due to bad zero in IOBluetoothDevice” is an exploit to the OS X kernel structure.

A potential attacker could use these vulnerabilities to raise their privilege levels effectively letting them take control of the computer.

An interesting note on Apple’s product security page states that:

For the protection of our customers, Apple does not disclose, discuss or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. Apple usually distributes information about security issues in its products through this site and the mailing list below.

Google has been known to publish vulnerabilities as it has done so in the past to Micosoft, as well as other companies. In most cases, they are fixed before Google has the chance to publish them but it would appear Apple has yet to address this issue.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest News

7Caps Free On-Screen Caps Lock Indicator Review

Many laptops and keyboards don't come with an indicator for your caps lock key. Num Lock is...

Are Lithium-Ion Batteries Recyclable?

Electric vehicles are growing every day, and they are certainly going to be the future of automotive technology. However, the cars are...

NASA demonstrates its first all-electric aircraft

NASA has demonstrated it's first all-electric experimental which they have dubbed as the X-57 Maxwell. Its first test flight is going to...

Tesla to launch version three of solar roof tiles on October 25, 2019

Tesla is going to launch a new version of its solar roof tiles line up tomorrow October 25, 2019.

Huawei VR Glass Will Launch This December In China

Huawei will finally be launching its own virtuality reality headset. The device has been dubbed the Huawei VR Glass. This has been...

More Articles Like This