Published: 03/07/2015 Updated: 06/12/2016

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Apple Mac EFI prior to 2015-001, as used in OS X prior to 10.10.4 and other products, does not properly set refresh rates for DDR3 RAM, which might make it easier for remote malicious users to conduct row-hammer attacks, and consequently gain privileges or cause a denial of service (memory corruption), by triggering certain patterns of access to memory locations.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x

Sources: googleprojectzeroblogspotca/2015/03/exploiting-dram-rowhammer-bug-to-gainhtml codegooglecom/p/google-security-research/issues/detail?id=284 Full PoC: githubcom/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/36311targz This is a proof-of-concept exploit that is able to escape from Native Cl ...

CWE-254 http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html http://support.apple.com/kb/HT204934 http://support.apple.com/kb/HT204942 http://lists.apple.com/archives/security-announce/2015/Jun/msg00003.html http://www.securityfocus.com/bid/75495 http://googleprojectzero.blogspot.com/2015/03/exploiting-dram-rowhammer-bug-to-gain.html http://www.securitytracker.com/id/1032755 http://www.securitytracker.com/id/1032444 https://nvd.nist.gov https://www.exploit-db.com/exploits/36311/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-3693

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect