Apple OS X NTFS Compression Block Information Disclosure Vulnerability

ID ZDI-15-288
Type zdi
Reporter Peter Rutenbar
Modified 2015-06-22T00:00:00


This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within the handling of NTFS file systems. The issue lies in the handling of compressed blocks. An attacker can leverage this vulnerability to leak the sensitive contents of physical memory.