Lucene search
HistoryApr 23, 2014 - 11:52 a.m.
CVE-2014-1322
cve-2014-1322
apple os x
kernel
xnu
aslr
aslr bypass
nvd
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
5.8 Medium
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
18.0%
The kernel in Apple OS X through 10.9.2 places a kernel pointer into an XNU object data structure accessible from user space, which makes it easier for local users to bypass the ASLR protection mechanism by reading an unspecified attribute of the object.
Affected configurations
Node
applemac_os_xRange≤10.9.2
ORapplemac_os_xMatch10.9
ORapplemac_os_xMatch10.9.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:mac_os_x | apple mac os x | le | 10.9.2 |
| apple:mac_os_x | apple mac os x | eq | 10.9 |
| apple:mac_os_x | apple mac os x | eq | 10.9.1 |
Related
nvd
nvd
CVE-2014-1322
2014-04-23 11:52:59
prion
prion
Design/Logic Flaw
2014-04-23 11:52:00
cvelist
cvelist
CVE-2014-1322
2014-04-23 10:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-02 (Nov 2016)
2016-11-17 00:00:00
securityvulns
securityvulns
APPLE-SA-2014-04-22-1 Security Update 2014-002
2014-05-04 00:00:00
Apple Mac OS X multiple security vulnerabilities
2015-04-09 00:00:00
Apple Mac OS X multiple security vulnerabilities
2014-05-30 00:00:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2014-002)
2014-04-22 00:00:00
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
5.8 Medium
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
18.0%
Related for CVE-2014-1322