Published: 03/07/2015 Updated: 22/09/2017
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

systemstatsd in the System Stats subsystem in Apple OS X prior to 10.10.4 does not properly interpret data types encountered in interprocess communication, which allows malicious users to execute arbitrary code with systemstatsd privileges via a crafted app, related to a "type confusion" issue.

Vulnerable Product Search on Vulmon Subscribe to Product

apple mac os x

Vendor Advisories

For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available To learn more about Apple Product Security, see the Apple Product Security website For information about the Apple Product Security PGP Key, see How to use ...