Apple OS X Multiple Vulnerabilities

Last Update Date: 23 Jun 2015 Release Date: 22 Jun 2015 3738 Views

RISK: High Risk

TYPE: Operating Systems - Mac OS

Multiple vulnerabilities were identified in Apple OS X. A remote user can gain elevated privileges on the target user's system in certain cases.

A remote user can create an application that, when installed by the target user, will access the keychain entry of a target application, delete the keychain entry, and then create a new, specially crafted keychain entry with the same attributes as the deleted entry. Then, when the target user subsequently updates their credentials for the target application, the remote user's application will gain access to the updated credentials from the new keychain entry.

The operating system does not provide authentication for WebSockets. A remote user can create an application that, when installed and loaded by the target user, will access an arbitrary WebSocket port and obtain potentially sensitive information from the target application using that port.

A remote user can create an application package that contains a helper application with a specially crafted bundle ID of an existing target application. When the target user runs the (remote user's) application, the operating system will grant that application access to the target application's access control list (ACL) and, as a result, the target application's sandbox.

Impact

Elevation of Privilege
Security Restriction Bypass
Information Disclosure

System / Technologies affected

10.10.3 and prior versions

Solutions

Note: The vulnerability has no patch available.

Vulnerability Identifier

No CVE information is available

Source

SecurityTracker