Awesome
Details
See Blog:
Exploitation of CVE-2022-22639
- Compile with command:
clang exploit.m -o /tmp/exploit -framework Foundation -fobjc-arc -fobjc-link-runtime /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/PrivateFrameworks/SoftwareUpdate.framework/Versions/A/SoftwareUpdate.tbd
- Unzip InstallAssistant.gz to
/tmp
folder - run
/tmp/exploit