1. 6
    Uncovering a macOS App Sandbox escape vulnerability: A deep dive into CVE-2022-26706 mac security microsoft.com
    fro avatar via fro 10 months ago |
    Archive.org Archive.today Ghostarchive
    | 3 comments
  1. 5
    mperham avatar mperham 10 months ago | link

    Seems like much of this post is a passive aggressive pitch on how Windows Defender is better than macOS sandbox security?

    1. 3
      thesnarky1 avatar thesnarky1 10 months ago | link

      I got the same feeling.

      The App Sandbox also restricts the processes’ access to system resources and user data to minimize the impact or damage if the app becomes compromised. However, we found that specially crafted codes could bypass these rules.

      “Specially crafted codes” is actually “Reconsider CVE-2021-30864 and read the man page for open to discover --stdin”. I thought the original CVE was more novel than this one.

    2. 3
      smcleod avatar smcleod 10 months ago | link

      Seems like marketing spam from MS to promote Windows / their antivirus software.