Critical remote code execution flaw fixed in popular terminal app for macOS

A security audit sponsored by Mozilla uncovered a critical remote code execution (RCE) vulnerability in iTerm2, a popular open-source terminal app for macOS. The flaw can be exploited if an attacker can force maliciously crafted data to be outputted by the terminal application, typically in response to a command issued by the user.

ITerm2 is an open-source alternative to the built-in macOS Terminal app, which allows users to interact with the command-line shell. Terminal apps are commonly used by system administrators, developers and IT staff in general, including security teams, for a variety of tasks and day-to-day operations.

To read this article in full, please click here

Read more: Critical remote code execution flaw fixed in popular terminal app for macOS

Story added 9. October 2019, content source with full text you can find at link above.