Apple Mac OS X up to 10.11.1 IOThunderboltFamily denial of service
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 3.6 | $0-$5k | 0.00 |
Summary
A vulnerability classified as problematic has been found in Apple Mac OS X up to 10.11.1. This impacts an unknown function of the component IOThunderboltFamily. This manipulation causes denial of service. This vulnerability is handled as CVE-2015-7067. There is not any exploit available. It is recommended to upgrade the affected component.
Details
A vulnerability classified as problematic was found in Apple Mac OS X up to 10.11.1 (Operating System). Affected by this vulnerability is some unknown processing of the component IOThunderboltFamily. The manipulation with an unknown input leads to a denial of service vulnerability. The CWE definition for the vulnerability is CWE-404. The product does not release or incorrectly releases a resource before it is made available for re-use. As an impact it is known to affect availability. The summary by CVE is:
IOThunderboltFamily in Apple OS X before 10.11.2 allows local users to cause a denial of service (NULL pointer dereference) via an unspecified userclient type.
The weakness was released 12/08/2015 by Jeonghoon Shin (beist) with TrendMicro as HT205637 as confirmed advisory (Website). The advisory is shared at support.apple.com. This vulnerability is known as CVE-2015-7067 since 09/16/2015. The exploitation appears to be easy. An attack has to be approached locally. The exploitation doesn't need any form of authentication. Neither technical details nor an exploit are publicly available. The advisory points out:
A null pointer dereference existed in IOThunderboltFamily's handling of certain userclient types. This issue was addressed through improved validation of IOThunderboltFamily contexts.
The vulnerability scanner Nessus provides a plugin with the ID 87314 (Mac OS X 10.11.x < 10.11.2 Multiple Vulnerabilities), which helps to determine the existence of the flaw in a target environment. It is assigned to the family MacOS X Local Security Checks and running in the context c. The commercial vulnerability scanner Qualys is able to test this issue with plugin 124389 (Apple Mac OS X v10.11.2 and Security Update 2015-008 Not Installed (APPLE-SA-2015-12-08-3)).
Upgrading to version 10.11.2 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (87314), SecurityFocus (BID 78721†) and Vulnerability Center (SBV-55078†). Entries connected to this vulnerability are available at VDB-79541, VDB-79545, VDB-79546 and VDB-79547. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Type
Vendor
Name
Version
License
Support
Website
- Vendor: https://www.apple.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 4.0VulDB Meta Temp Score: 3.6
VulDB Base Score: 4.0
VulDB Temp Score: 3.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Denial of serviceCWE: CWE-404
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: No
Availability: 🔍
Access: Public
Status: Proof-of-Concept
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 87314
Nessus Name: Mac OS X 10.11.x < 10.11.2 Multiple Vulnerabilities
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
OpenVAS ID: 801105
OpenVAS Name: Apple Mac OS X Multiple Vulnerabilities-01 December-15
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Exploit-DB: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: Mac OS X 10.11.2
Timeline
09/16/2015 🔍12/08/2015 🔍
12/08/2015 🔍
12/08/2015 🔍
12/09/2015 🔍
12/10/2015 🔍
12/10/2015 🔍
12/11/2015 🔍
11/12/2024 🔍
Sources
Vendor: apple.comAdvisory: HT205637
Researcher: Jeonghoon Shin (beist)
Organization: TrendMicro
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2015-7067 (🔍)
GCVE (CVE): GCVE-0-2015-7067
GCVE (VulDB): GCVE-100-79561
SecurityFocus: 78721 - Apple Mac OS X APPLE-SA-2015-12-08-3 Multiple Security Vulnerabilities
SecurityTracker: 1034344
Vulnerability Center: 55078 - Apple MacOS X <10.11.2 Local DoS in IOThunderboltFamily, Low
scip Labs: https://www.scip.ch/en/?labs.20150108
See also: 🔍
Entry
Created: 12/09/2015 14:04Updated: 11/12/2024 10:43
Changes: 12/09/2015 14:04 (63), 05/14/2018 09:13 (16), 06/29/2022 14:03 (3), 06/29/2022 14:08 (1), 11/12/2024 10:43 (22)
Complete: 🔍
Cache ID: 216::103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.