A researcher that goes by the handle Siguza released details of a local privilege escalation attack against macOS that dates back to 2002. A successful attack could give adversaries complete root access to targeted systems. A patch for the bug is expected by Apple later this month as part of a cumulative update, say experts. The most troubling thing about this vulnerability is that it has existed for years, said Jason Haddix, head of trust and security at Bugcrowd,.
Source: https://threatpost.com/macos-lpe-exploit-gives-attackers-root-access/129282/

