CVE-2017-8665

HIGH

Xamarin.iOS - Elevation of Privilege via Update Component

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-8665. PoCs published by Securify.

AI-analyzed exploit summary This exploit leverages a setuid root flaw in Xamarin Studio's API documentation update mechanism to overwrite the sudoers file, granting passwordless root access. The script manipulates curl configuration to replace /private/etc/sudoers with a malicious version.

Description

The Xamarin.iOS update component on systems running macOS allows an attacker to run arbitrary code as root, aka "Xamarin.iOS Elevation Of Privilege Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED
by Securify · textlocalmacos
https://www.exploit-db.com/exploits/42454

This exploit leverages a setuid root flaw in Xamarin Studio's API documentation update mechanism to overwrite the sudoers file, granting passwordless root access. The script manipulates curl configuration to replace /private/etc/sudoers with a malicious version.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Xamarin Studio for Mac (versions 6.2.1, 6.3)
No auth needed
Prerequisites: Local access to a vulnerable Xamarin Studio installation
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/42454/
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/100308
Patch, Release Notes, Vendor Advisory x_refsource_confirm
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8665

Scores

CVSS v3 7.8
EPSS 0.0435
EPSS Percentile 90.0%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-732
Status published
Products (2)
microsoft/xamarin.ios < 10.11
Microsoft Corporation/Xamarin.iOS Xamarin.iOS
Published Aug 15, 2017
Tracked Since Feb 18, 2026