Lucene search
AnonymousZDI-14-240HistoryJul 18, 2014 - 12:00 a.m.
Apple OS X Dock Service Sandbox Escape Vulnerability
2014-07-1800:00:00
Anonymous
www.zerodayinitiative.com
10
0.052 Low
EPSS
Percentile
93.0%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the OS X Dock. The issue lies in the failure to proper sanitize a user-supplied value prior to indexing into an array of function pointers. An attacker could leverage this vulnerability to execute code within the context of the Dock process.
References
Related
cve
cve
CVE-2014-1371
2014-07-01 10:17:27
prion
prion
Null pointer dereference
2014-07-01 10:17:00
nvd
nvd
CVE-2014-1371
2014-07-01 10:17:27
cvelist
cvelist
CVE-2014-1371
2014-07-01 10:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities -03 (Sep 2014)
2014-09-19 00:00:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2014-003)
2014-07-01 00:00:00
Mac OS X 10.9.x < 10.9.4 Multiple Vulnerabilities
2014-07-01 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2014-08-04 00:00:00
APPLE-SA-2014-06-30-2 OS X Mavericks 10.9.4 and Security Update 2014-003
2014-08-04 00:00:00