Do you find having to type in the root password annoying and time-consuming? Then this security vulnerability is for you. Read this article to learn how easy it is to exploit this vulnerability in macOS High Sierra.
There has been countless of vulnerabilities in the past that allowed an attacker to get root access. But this vulnerability is without a doubt in a league of its own. All you need to exploit this vulnerability is to bring up the authentication dialog box, type in root as the user name, put the cursor in the password field and enter. Yes that's it — amazing.
And in case you don't believe me, here's a video where I show you how it's done.
In all fairness, it should be said that when you have physical access to a machine then you can almost always access the data stored on it regardless. But that would require rebooting the machine and bring it up in some kind of single user or recovery mode. This vulnerability will save you from all that trouble.
The security vulnerability has been now patched. A security patch was automatically installed on my machine and now the problem has been solved. So now I'm running the following version which is not vulnerable:
Tags: #macOS #hack #password
This is the personal website and article collection of me — Robert Svensson. I currently work for Contentful writing about APIs, coding and the future of content management
You can also find out what I'm up to by following me on GitHub, Twitter and LinkedIn. Feel free to send me an e-mail at [email protected]