Unprotected XPC Service in Mailbutler Shimo VPN Client Allows Root Script Execution

Unprotected XPC Service in Mailbutler Shimo VPN Client Allows Root Script Execution

CVE-2018-6823 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In the VPN client in Mailbutler Shimo before 4.1.5.1 on macOS, the com.feingeist.shimo.helper tool LaunchDaemon implements an unprotected XPC service that can be abused to execute scripts as root.

Learn more about our Cis Benchmark Audit For Apple Macos.