Exploitation Summary
EIP tracks 1 public exploit for CVE-2015-5784. PoCs published by Google Security Research.
AI-analyzed exploit summary This exploit leverages a distributed object vulnerability in the suid root binary `/System/Library/PrivateFrameworks/Install.framework/Resources/runner` on macOS. By passing a custom object to the `makeReceiptDirAt:asRoot:` method, the attacker can manipulate method calls to achieve arbitrary directory creation, chown, and unlink operations with root privileges.
Description
runner in Install.framework in the Install Framework Legacy component in Apple OS X before 10.10.5 does not properly drop privileges, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
Exploits (1)
This exploit leverages a distributed object vulnerability in the suid root binary `/System/Library/PrivateFrameworks/Install.framework/Resources/runner` on macOS. By passing a custom object to the `makeReceiptDirAt:asRoot:` method, the attacker can manipulate method calls to achieve arbitrary directory creation, chown, and unlink operations with root privileges.