It seems the Adobe Acrobat exploit “com.adobe.ARMDC.SMJobBlessHelper” is resurfacing on systems running Mac OS 11.4 (Big Sur). Unfortunately, the only requirement to trigger the vulnerabilities is to have Adobe Acrobat installed. How lovely, it’s just another rainy day in the Windy City.
Within /Library/PrivilegedHelperTools/ is one of the components of Adobe Acrobat Reader DC, responsible for software updating. It runs as root with no-sandbox and hosts an XPC service named SMJobBlessHelper(com.adobe.ARMDC.SMJobBlessHelper).
Originally posted back in May of 2020 from @yuebinsun2020. To read the full article, please visit Yuebin Sun’s blog at: https://tinyurl.com/astralink
PS: You can get weather information in the command line using cURL and wttr.in: