Pages: [1]   Go Down
  Print  
Author Topic: Microsoft warns of macOS ‘powerdir’ bug that could expose private data  (Read 76 times)
HCK
Global Moderator
Hero Member
*****
Posts: 79425



« on: January 14, 2022, 04:05:22 pm »

Microsoft warns of macOS ‘powerdir’ bug that could expose private data

<div id="link_wrapped_content">
<body><section class="wp-block-bigbite-multi-title"><div class="container"></div></section><p>Apple encourages users to install OS updates as soon as possible because they fix bugs and more importantly, patch security holes. Microsoft just outlined one of the <a href="https://go.redirectingat.com/?id=111346X1569486&amp;url=https://www.microsoft.com/security/blog/2022/01/10/new-macos-vulnerability-powerdir-could-lead-to-unauthorized-user-data-access/&amp;xcust=1-1-581766-1-0-0&amp;sref=https://www.macworld.com/feed" rel="nofollow">bugs fixed in Monterey 12.1[/url], and it&rsquo;s a doozy.</p>



<p>The vulnerability dubbed &ldquo;powerdir&rdquo; could let someone bypass macOS&rsquo;s Transparency, Consent, and Control (TCC) security framework and hijack access to a user&rsquo;s protected data. TCC is a part of macOS that allows users to configure the Mac&rsquo;s privacy settings, and Microsoft discovered a way to &ldquo;programmatically change a target user&rsquo;s home directory and plant a fake TCC database, which stores the consent history of app requests.&rdquo; This would allow an attacker to install a malicious app or take over an installed app, and then be able to take screenshots or record audio from a microphone while the computer is in use.</p>



<p>It&rsquo;s typical for a third-party company or developer to release the details of a bug or security hole they discovered after Apple has provided a fix. Microsoft provides more&nbsp;<a href="https://go.redirectingat.com/?id=111346X1569486&amp;url=https://www.microsoft.com/security/blog/2022/01/10/new-macos-vulnerability-powerdir-could-lead-to-unauthorized-user-data-access/&amp;xcust=1-1-581766-1-0-0&amp;sref=https://www.macworld.com/feed" rel="nofollow">details on how the powerdir hole works[/url].</p>



<p>Powerdir was cataloged as CVE-2021-30970 in the&nbsp;<a href="https://go.redirectingat.com/?id=111346X1569486&amp;url=https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30970&amp;xcust=1-1-581766-1-0-0&amp;sref=https://www.macworld.com/feed" rel="nofollow">CVE database[/url], and is identified as one of the security patches in&nbsp;<a href="https://go.redirectingat.com/?id=111346X1569486&amp;url=https://support.apple.com/en-us/HT212978&amp;xcust=1-1-581766-1-0-0&amp;sref=https://www.macworld.com/feed" rel="nofollow">macOS Monterey 12.1[/url] and macOS Big Sur 11.6.2, which were released by Apple on December 13. Here is Apple&rsquo;s description of the patch:</p>



<p><strong>TCC</strong></p>



<ul><li><strong>Available for:</strong> macOS Monterey</li><li><strong>Impact:</strong> A malicious application may be able to bypass Privacy preferences</li><li><strong>Description: </strong>A logic issue was addressed with improved state management.</li><li><strong>CVE-2021-30970:</strong> Jonathan Bar Or of Microsoft</li></ul><h2 id="how-to-update-to-macos">How to update to macOS</h2>



<p>The update is free and you need to be connected to the internet. The installation will take several minutes (plan on about 30 minutes) and your Mac needs to restart. Here are the steps to do the installation:</p>



<ol type="1"><li>Go to System Preferences in the Apple menu</li><li>Click on&nbsp;Software Update.</li><li>Your Mac will check to see if the update is available. when it is, an Install button will appear. Click it and your Mac will start downloading the update. After that, it will start the installation.</li></ol>
</body></div>

Source: Microsoft warns of macOS ‘powerdir’ bug that could expose private data
Logged
Pages: [1]   Go Up
  Print  
 
Jump to: