CVE-2011-1516

Apple Mac OS X 10.5.x-10.7.x - Privilege Escalation

Title source: llm

Description

The kSBXProfileNoNetwork and kSBXProfileNoInternet sandbox profiles in Apple Mac OS X 10.5.x through 10.7.x do not propagate restrictions to all created processes, which allows remote attackers to access network resources via a crafted application, as demonstrated by use of osascript to send Apple events to the launchd daemon, a related issue to CVE-2008-7303.

Exploits (1)

exploitdb WORKING POC

doswindows

https://www.exploit-db.com/exploits/18853

View Code ZIP pw:eip

References (2)

[Exploit] http://www.coresecurity.com/content/apple-osx-sandbox-bypass

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/520479/100/100/threaded

Scores

EPSS 0.0349

EPSS Percentile 87.6%

Details

CWE

CWE-264

Status published

Products (21)

apple/mac_os_x 10.5.0

apple/mac_os_x 10.5.1

apple/mac_os_x 10.5.2

apple/mac_os_x 10.5.3

apple/mac_os_x 10.5.4

apple/mac_os_x 10.5.5

apple/mac_os_x 10.5.6

apple/mac_os_x 10.5.7

apple/mac_os_x 10.5.8

apple/mac_os_x 10.6.0

... and 11 more

Published Nov 15, 2011

Tracked Since Feb 18, 2026