PT-2014-4157 · Apple · Os X
Publicado
2014-07-01
·
Atualizado
2015-12-22
·
CVE-2014-1378
CVSS v2.0
2.1
Baixa
| Vetor | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Apple OS X versions prior to 10.9.4
Description
The issue allows local users to bypass the Address Space Layout Randomization (ASLR) protection mechanism. This is achieved by leveraging read access to a kernel pointer in an IOKit object, specifically through the IOGraphicsFamily component.
Recommendations
For Apple OS X versions prior to 10.9.4, update to version 10.9.4 or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Os X