Lucene search
HistoryJul 01, 2014 - 10:17 a.m.
CVE-2014-1372
cve-2014-1372
graphics driver
apple os x
security vulnerability
aslr bypass
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Graphics Driver in Apple OS X before 10.9.4 does not properly restrict read operations during processing of an unspecified system call, which allows local users to obtain sensitive information from kernel memory and bypass the ASLR protection mechanism via a crafted call.
Affected configurations
Node
applemac_os_xRange≤10.9.3
ORapplemac_os_xMatch10.8.0
ORapplemac_os_xMatch10.8.1
ORapplemac_os_xMatch10.8.2
ORapplemac_os_xMatch10.8.3
ORapplemac_os_xMatch10.8.4
ORapplemac_os_xMatch10.8.5
ORapplemac_os_xMatch10.8.5supplemental_update
ORapplemac_os_xMatch10.9
ORapplemac_os_xMatch10.9.1
ORapplemac_os_xMatch10.9.2
Related
cvelist
cvelist
CVE-2014-1372
2014-07-01 10:00:00
nvd
nvd
CVE-2014-1372
2014-07-01 10:17:27
prion
prion
Memory corruption
2014-07-01 10:17:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities -02 (Sep 2014)
2014-09-19 00:00:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2014-003)
2014-07-01 00:00:00
Mac OS X 10.9.x < 10.9.4 Multiple Vulnerabilities
2014-07-01 00:00:00
googleprojectzero
googleprojectzero
pwn4fun Spring 2014 - Safari - Part II
2014-11-24 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2014-08-04 00:00:00
APPLE-SA-2014-06-30-2 OS X Mavericks 10.9.4 and Security Update 2014-003
2014-08-04 00:00:00
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2014-1372