[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Arbitrary code execution vulnerability in iTerm2 via command-line utilities - CVE-2019-9535 (Mac OS X)

ID: oval:org.secpod.oval:def:59016Date: (C)2019-10-11   (M)2023-11-13
Class: VULNERABILITYFamily: macos




The host is installed with iTerm2 before 3.3.6 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle an issue in the way that iTerm2 integrates with tmux control mode. Successful exploitation allows attackers to execute arbitrary commands on their victim's computer by providing malicious output to the terminal.

Platform:
Apple Mac OS 11
Apple Mac OS X 10.15
Apple Mac OS X 10.10
Apple Mac OS X 10.11
Apple Mac OS X 10.12
Apple Mac OS X 10.13
Apple Mac OS X 10.14
Product:
iTerm2
Reference:
CVE-2019-9535
CVE    1
CVE-2019-9535
CPE    1
cpe:/a:iterm2:iterm2

© SecPod Technologies