CVE-2015-5897
CVE-2015-5897 : The Address Book framework in macOS prior to 10.11 allows local users to gain privileges by injecting code via an environment variable into processes that load the Address Book framework. Root cause: improper handling of environment variables in the Address Book integration. Impac...