Apple fixed a vulnerability discovered by Microsoft researchers

[MuzzMelbourne]

Content source

https://securityaffairs.com/146853/security/macos-sip-root-restrictions-bypass.html

Researchers from Microsoft discovered a vulnerability, tracked as CVE-2023-32369 and dubbed Migraine, that can allow attackers with root privileges to bypass System Integrity Protection (SIP).

System Integrity Protection (also referred to as rootless) is a macOS security feature introduced in OS X El Capitan (2015) (OS X 10.11). SIP technology restricts a root user from performing operations that may compromise system integrity.

Microsoft found a new bug that allows bypassing SIP root restrictions in macOS

Apple fixed a bug discovered by Microsoft researchers that lets attackers with root privileges bypass System Integrity Protection (SIP).

securityaffairs.com

Mmmm, one would have thought Microsoft would have enough for their engineer's to do already!

 

[Ink]

You can thank both the Microsoft researchers for discovering the vulnerability, and Apple engineers for fixing it. After all they are human beings solving these problems.

 

[MuzzMelbourne]

mea culpa...