CVE-2020-27949

EIP tracks 1 public exploit for CVE-2020-27949. PoCs published by seemoo-lab.

AI-analyzed exploit summary This PoC exploits CVE-2020-27949, a vulnerability in macOS's `/dev/fasttrap` device, allowing arbitrary memory read/write in processes running under DTrace without elevated permissions. The exploit leverages `FASTTRAPIOC_MAKEPROBE` and `FASTTRAPIOC_GETINSTR` ioctls to replace memory values with trap instructions and dump memory contents.

This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may cause unexpected changes in memory belonging to processes traced by DTrace.