Published: 11/12/2015 Updated: 08/03/2019

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 730

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The kernel in Apple iOS prior to 9.2, OS X prior to 10.11.2, tvOS prior to 9.1, and watchOS prior to 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7083.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os
apple mac os x
apple watchos
apple tvos

/* Source: codegooglecom/p/google-security-research/issues/detail?id=598 The userspace MIG wrapper IORegistryIteratorExitEntry invokes the following kernel function: kern_return_t is_io_registry_iterator_exit_entry( io_object_t iterator ) { bool didIt; ...

Source: codegooglecom/p/google-security-research/issues/detail?id=620 I wanted to demonstrate that these iOS/OS X kernel race condition really are exploitable so here's a PoC which gets RIP on OS X The same techniques should transfer smoothly to iOS :) The bug is here: void IORegistryIterator::reset( void ) { while( exitEntry()) ...

CWE-119 http://lists.apple.com/archives/security-announce/2015/Dec/msg00001.html http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html https://support.apple.com/HT205637 http://lists.apple.com/archives/security-announce/2015/Dec/msg00000.html https://support.apple.com/HT205641 https://support.apple.com/HT205635 http://lists.apple.com/archives/security-announce/2015/Dec/msg00002.html https://support.apple.com/HT205640 http://www.securityfocus.com/bid/78719 https://www.exploit-db.com/exploits/39366/https://www.exploit-db.com/exploits/39357/http://www.securitytracker.com/id/1034344 https://nvd.nist.gov https://www.exploit-db.com/exploits/39366/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-7084

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect