Lucene search
Christopher HicksteinZDI-14-368HistoryOct 24, 2014 - 12:00 a.m.
Apple OS X GateKeeper Bypass Vulnerability
2014-10-2400:00:00
Christopher Hickstein
www.zerodayinitiative.com
16
EPSS
0.04
Percentile
92.1%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Gatekeeper. The issue lies in the usage of signed applications that do not sign the frameworks they depend on. An attacker can leverage this vulnerability to execute code under the context of the user.
References
Related
cvelist
cvelist
CVE-2014-4391
2014-10-18 01:00:00
zdt
zdt
Apple OS X GateKeeper Bypass Vulnerability
2014-12-20 00:00:00
prion
prion
Design/Logic Flaw
2014-10-18 01:55:00
nvd
nvd
CVE-2014-4391
2014-10-18 01:55:12
cve
cve
CVE-2014-4391
2014-10-18 01:55:12
openvas
openvas
Apple Mac OS X Security Update (HT203112)
2022-09-02 00:00:00
nessus
nessus
Mac OS X < 10.10 Multiple Vulnerabilities (POODLE) (Shellshock)
2014-10-17 00:00:00
securityvulns
securityvulns
APPLE-SA-2014-10-16-1 OS X Yosemite v10.10
2014-10-18 00:00:00
Apple OS X / OS X Server multiple security vulnerabilities
2014-10-18 00:00:00