{"uuid": "dd156807-bbe6-475e-be3a-fd7e0d9a136e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-6797", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1497", "content": "#Red_Team_Tactics\nExploiting popular macOS apps with a single \u201c.terminal\u201d file + two \u201cinsecure features\u201d: dangerous handling of .fileloc and .url shortcut files, those allow executing arbitrary local files by the full path at shortcut file opening (CVE-2020-6797/6402) (PoC)\nhttps://medium.com/@metnew/exploiting-popular-macos-apps-with-a-single-terminal-file-f6c2efdfedaa", "creation_timestamp": "2020-12-30T15:05:44.000000Z"}