CVE-2014-4403

EUVD-2014-4330
The kernel in Apple OS X before 10.9.5 allows local users to obtain sensitive address information and bypass the ASLR protection mechanism by leveraging predictability of the location of the CPU Global Descriptor Table.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
Affected Products (NVD)
VendorProductVersion
applemac_os_x
10.9
applemac_os_x
10.9.1
applemac_os_x
10.9.2
applemac_os_x
10.9.3
applemac_os_x
10.9.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://support.apple.com/kb/HT6443
http://www.securityfocus.com/bid/69910
http://www.securitytracker.com/id/1030868
https://exchange.xforce.ibmcloud.com/vulnerabilities/96064
http://support.apple.com/kb/HT6443
http://www.securityfocus.com/bid/69910
http://www.securitytracker.com/id/1030868
https://exchange.xforce.ibmcloud.com/vulnerabilities/96064