Local Privilege Escalation Vulnerability in Little Snitch Installer

Local Privilege Escalation Vulnerability in Little Snitch Installer

CVE-2017-2675 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.obdev.littlesnitchd.plist" which gets installed to /Library/LaunchDaemons.

Learn more about our Web Application Penetration Testing UK.