A 15 year-old MacOS security flaw allows any user root access

[Jan]

A 15 year-old MacOS security flaw allows any user root access

A "hobbyist hacker" who calls themselves Siguza on Twitter has posted the details of a security flaw in MacOS that allows any user on a machine to become the super administrator, or root.

 

[/dev/null]

Lets hope they pay him

 

[SauRoNZA]

Hmm.

Every OS has a means to get root access when you have physical access to the system.

Most of them by design.

Including OSX, Linux and Windows.

I’m betting this isn’t much different and looking at the kernel service it’s linked to I wouldn’t be surprised if this is simply part of the known standard design and not a hack at all.

There are a few different ways to manage root access on OSX with physical access, all known to Apple professionals.

Now if it allowed you to bypass FileVault and gain root access that would be a very different story.