SigDigger icon indicating copy to clipboard operation
SigDigger copied to clipboard

Published 20 hours ago verified publisher icon BatchDrake

RPath Vulnerability in SigDigger suscan v0.2.0 on MacOS (DyLib Hijacker Vulnerability) -

Open harishletsgo opened this issue 2 years ago • 1 comments

Was noticing something suspicious. And turns out the SigDigger application is vulnerable and an exploitable target by means of the RPath Vulnerability. Detected using DHS (Dylib Hijack Scanner from objective-see_DOT_com)

RFC :)

Possibly related to CVE-2008-5516

sigdid rpath vulnerability

harishletsgo avatar Apr 25 '22 02:04 harishletsgo

Hey, thanks for reporting!

So, let me get it straight, you managed to hijack a desktop application locally with a regular user, right? Do you have a PoC? Could you describe an exploitation scenario that affects the user, so I can come up with a solution?

On the other hand, how is this related to CVE-2008-5516?

BatchDrake avatar Apr 25 '22 05:04 BatchDrake

I am tentatively closing this issue as I don't yet how this can affect the user. Feel free to open it if you find an exploitation scenario.

BatchDrake avatar Oct 14 '22 08:10 BatchDrake