Heap-based buffer overflow in SceneKit in Apple OS X prior to 10.10.5 allows remote malicious users to execute arbitrary code via a crafted Collada file.
apple mac os x