CVE-2011-1516

Severity

76%

Complexity

49%

Confidentiality

165%

The kSBXProfileNoNetwork and kSBXProfileNoInternet sandbox profiles in Apple Mac OS X 10.5.x through 10.7.x do not propagate restrictions to all created processes, which allows remote attackers to access network resources via a crafted application, as demonstrated by use of osascript to send Apple events to the launchd daemon, a related issue to CVE-2008-7303.

CVSS 2.0 Base Score 7.6. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:C/I:C/A:C).

Overview

Type

Apple Mac OS X

First reported 13 years ago

2011-11-15 18:55:00

Last updated 6 years ago

2018-10-09 19:31:00

Affected Software

Apple Mac OS X 10.5.0

10.5.0

Apple Mac OS X 10.5.1

10.5.1

Apple Mac OS X 10.5.2

10.5.2

Apple Mac OS X 10.5.3

10.5.3

Apple Mac OS X 10.5.4

10.5.4

Apple Mac OS X 10.5.5

10.5.5

Apple Mac OS X 10.5.6

10.5.6

Apple Mac OS X 10.5.7

10.5.7

Apple Mac OS X 10.5.8

10.5.8

Apple Mac OS X 10.6.0

10.6.0

Apple Mac OS X 10.6.1

10.6.1

Apple Mac OS X 10.6.2

10.6.2

Apple Mac OS X 10.6.3

10.6.3

Apple Mac OS X 10.6.4

10.6.4

Apple Mac OS X 10.6.5

10.6.5

Apple Mac OS X 10.6.6

10.6.6

Apple Mac OS X 10.6.7

10.6.7

Apple Mac OS X 10.6.8

10.6.8

Apple Mac OS X 10.7.0

10.7.0

Apple Mac OS X 10.7.1

10.7.1

Apple Mac OS X 10.7.2

10.7.2

References

http://www.coresecurity.com/content/apple-osx-sandbox-bypass

Exploit

20111110 CORE-2011-0919: Apple OS X Sandbox Predefined Profiles Bypass

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.