CVE-2018-4334

Vulnerability

CVE-2018-4334 is a memory corruption vulnerability in the AFP server (afpserver) component of macOS. The issue affects macOS versions prior to 10.14 Mojave, including macOS Sierra 10.12.6 and High Sierra 10.13.6 [1]. The vulnerability arises due to improper memory handling when processing certain HTTP requests [1].

Exploitation

An attacker situated remotely can exploit this vulnerability by crafting a malicious HTTP request sent to an AFP server [1]. No authentication is required for successful exploitation. The attacker does not need any special network position beyond being able to communicate with the vulnerable server.

Impact

Successful exploitation could lead to memory corruption, which may allow an attacker to execute arbitrary code on the target system [1]. This could potentially result in full compromise of the affected Mac, including unauthorized access to data, installation of malware, or further network attacks.

Mitigation

The vulnerability was fixed in macOS Mojave 10.14, released on September 24, 2018 [2]. Users running older versions (Sierra 10.12.6 or High Sierra 10.13.6) should update to the latest available security update or upgrade to macOS Mojave [1]. No workarounds are mentioned.