完整标题: Apple OSX 10.10.4 DYLD_PRINT_TO_FILE Privilege Escalation Exploit 
类别: local exploits
平台: macOS
In Apple OS X 10.10.4 and prior, the DYLD_PRINT_TO_FILE environment variable is used for redirecting logging data to a file instead of stderr. Due to a design error, this feature can be abused by a local attacker to write arbitrary files as root via restricted, SUID-root binaries.

# 0day.today @ http://0day.today/