It was found that the loader application bundled with InsomniaX can be used to load arbitrary Kernel Extensions (kext). The loader is normally used to load a kext file that is needed to disable the Lid Sleep. A flaw has been found in the loader that allows a local attacker to load (or unload) any arbitrary kext file. Version 2.1.8 is affected.
Source: InsomniaX 2.1.8 Arbitrary Kernel Extension Loading
The post InsomniaX 2.1.8 Arbitrary Kernel Extension Loading appeared first on MondoUnix.