Apple OS X AppleGraphicsPowerManagement Null Pointer Dereference Privilege Escalation Vulnerability

ID ZDI-16-642
Type zdi
Reporter daybreaker@Minionz
Modified 2016-12-15T00:00:00


This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

The specific flaw exists within the handling of the AppleGraphicsPowerManagement kext. The issue lies in the absence of a check to ensure that a pointer is not null. An attacker can leverage this vulnerability to escalate privileges under the context of the kernel.