← back
CVE-2012-4284

CVE-2012-4284

EPSS 69.5%
A Privilege Escalation vulnerability exists in Viscosity 1.4.1 on Mac OS X due to a path name validation issue in the setuid-set ViscosityHelper binary, which could let a remote malicious user execute arbitrary code
Affected products
n/a · n/a
public PoCs found4
cve_referencepacketstormsecurity.com/files/120643/Viscosity-setuid-set-ViscosityHelper-Privilege-Escalation.htmlunverifiedcve_referencewww.exploit-db.com/exploits/24579unverifiedexploitdbwww.exploit-db.com/exploits/20485unverifiedexploitdbwww.exploit-db.com/exploits/24579unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://packetstormsecurity.com/files/120643/Viscosity-setuid-set-ViscosityHelper-Privilege-Escalation.htmlhttps://www.sparklabs.com/viscosity/releasenotes/mac/http://www.exploit-db.com/exploits/24579http://www.securityfocus.com/bid/55002