Published: 23/04/2014 Updated: 24/04/2014

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

VMScore: 495

Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N

The kernel in Apple OS X up to and including 10.9.2 places a kernel pointer into an XNU object data structure accessible from user space, which makes it easier for local users to bypass the ASLR protection mechanism by reading an unspecified attribute of the object.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x 10.9
apple mac os x
apple mac os x 10.9.1

source: wwwsecurityfocuscom/bid/67023/info Apple Mac OS X is prone to a local security-bypass vulnerability Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions Apple Mac OS X 1092 is vulnerable; other versions may also be affected #include <stdioh> #include <strings ...

CVE-2014-1322 - IPC Local Security Bypass | Mac OSX (Affected. >= 10.9.2)

IPC-Memory-Mac-OSX-Exploit IPC Local Security Bypass Inter Process Communication through shared memory is a concept where two or more process can access the common memory And communication is done via this shared memory where changes made by one process can be viewed by another process The kernel in Apple OS X through 1092 places a kernel pointer into an XNU object data str

CWE-200 http://archives.neohapsis.com/archives/bugtraq/2014-04/0134.html https://nvd.nist.gov https://github.com/raymondpittman/IPC-Memory-Mac-OSX-Exploit https://www.exploit-db.com/exploits/39147/

CVE-2014-1322

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect