Pwnie Awards 2017

2020 Nomination for Best Privilege Escalation Bug

Exploiting the “noowners” Flag – APFS Privilege Escalation

Csaba Fitzl

A user may gain access to protected parts of the file system through APFS snapshot as read-only, with “noowners” flag.

About the security content of macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra, CVE-2020-9771