12 matches found
EUVD-2014-4302
Malware in sbrugna...
macOS XNU - Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File
/ XNU has various interfaces that permit creating copy-on-write copies of data between processes, including out-of-line message descriptors in mach messages. It is important that the copied memory is protected against later modifications by the source process; otherwise, the source process might ...
(Pwn2Own) Apple macOS task_set_special_port Port Overwrite Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of Mach...
CVE-2016-7661
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. The issue involves the "Power Management" component. It allows local users to gain privileges via unspecified vectors related to Mach port name references...
Apple macOS 10.12.2 iOS 10.2 Kernel - ipc_port_t Reference Count Leak Due to Incorrect externalMethod Overrides Use-After-Free
Apple macOS 10.12.2 iOS 10.2 Kernel - ipcportt Reference Count Leak Due to Incorrect externalMethod Overrides Use-After-Free Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=926 mach ports are really struct ipcportt's in the kernel; this is a reference-counted object, ipreference...
task_t considered harmful
Posted by Ian Beer, Project Zero This post discusses a design issue at the core of the XNU kernel which powers iOS and MacOS. Apple have shipped two iterations of mitigations followed yesterday by a large refactor in MacOS 10.12.1/iOS 10.1. We’ll look at the bugs, how they can be exploited to...
CVE-2014-4375
Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service device crash via vectors related to Mach ports...
Double free
Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service device crash via vectors related to Mach ports...
CVE-2014-4375
CVE-2014-4375 is a local privilege-escalation and denial-of-service risk tied to a double-free in Mach ports within Apple iOS pre-8 and Apple TV pre-7. Public docs tie the issue to kernel/Mach ports handling, with confirmed remediation in iOS 8 and Apple TV 7 security updates. Affected components...
CVE-2014-4375
Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service device crash via vectors related to Mach ports...
Apple Mac OS X multiple security vulnerabilities
Mach ports privilege escalation. Multiple Appletalk protocol handling vulnerabilities. ldt privilege escalation...
[Full-disclosure] iDefense Security Advisory 11.14.07: Apple Mac OS X Mach Port Inheritance Privilege Escalation Vulnerability
iDefense Security Advisory 11.14.07 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 14, 2007 I. BACKGROUND Mach ports are used to provide inter-process communication IPC facilities on Mac OS X. More information can be found on the vendor's site at the following URL...