CVE-2018-9105

Name of the Vulnerable Software and Affected Versions NordVPN version 3.3.10 for macOS

Description The issue arises from the privileged helper tool's implemented XPC service, which is responsible for receiving and processing new OpenVPN connection requests. This XPC service is not protected, allowing arbitrary applications to connect and send XPC messages. An attacker can send a crafted XPC message to the privileged helper tool, requesting a new OpenVPN connection and specifying the location of the openvpn executable, potentially pointing to a malicious executable. This could result in code execution in the context of the privileged helper tool.

Recommendations For NordVPN version 3.3.10 for macOS, consider disabling the XPC service of the privileged helper tool until a patch is available to prevent arbitrary applications from sending XPC messages. Restrict access to the OpenVPN connection requests to minimize the risk of exploitation. Avoid using the vulnerable XPC service in the privileged helper tool until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.