Entitlement protection mechanism bypass vulnerability in Apple Mac OS X by leveraging root privileges| ID: oval:org.secpod.oval:def:30922 | Date: (C)2015-11-06 (M)2024-02-19 |
| Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS X or Server 10.6.8 before 10.11 and is prone to an entitlement protection mechanism bypass vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation allow local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes.
| Platform: |
| Apple Mac OS X 10.10 |
| Apple Mac OS X 10.6 |
| Apple Mac OS X 10.7 |
| Apple Mac OS X 10.8 |
| Apple Mac OS X 10.9 |
| Apple Mac OS X Server 10.10 |
| Apple Mac OS X Server 10.6 |
| Apple Mac OS X Server 10.7 |
| Apple Mac OS X Server 10.8 |
| Apple Mac OS X Server 10.9 |
