The code-signing implementation in Apple OS X prior to 10.10.4 does not properly consider libraries that are external to an application bundle, which allows malicious users to bypass intended launch restrictions via a crafted library.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x |