On May 31st, Gizcoupon reported that Microsoft had recently published a blog post announcing the discovery of a vulnerability named “Migraine” in the macOS system. The company has already alerted Apple regarding this issue.
According to the blog post by Microsoft, attackers with root-level privileges can exploit “Migraine” to “automatically bypass” the System Integrity Protection (SIP) and execute arbitrary operations.
The blog post provides an overview of the attack methods utilized by attackers exploiting the SIP vulnerability. Additionally, it delves into the discovery process, exploitation techniques, and the negative impact it poses.
One notable aspect of this vulnerability is its support for remote operations, enabling attackers to amplify the extent of damage by leveraging other vulnerabilities.
Microsoft emphasizes that fixing the Migration Assistant alone is insufficient to thwart attackers exploiting this vulnerability effectively. Moreover, attackers can employ AppleScript to run the vulnerability using specially crafted Time Machine backup files.
Apple has already addressed this vulnerability in the macOS Ventura 13.4 update, which was released on May 18th. Therefore, users are advised to upgrade as soon as possible. Gizcoupon attaches a link to a detailed introduction of Microsoft to the vulnerability here. Interested users may click on it to read further.