CVE-2015-7078

Apple Mac OS X < 10.11.1 - Use After Free

Title source: rule

Description

Use-after-free vulnerability in Hypervisor in Apple OS X before 10.11.2 allows local users to gain privileges via vectors involving VM objects.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · cdososx

https://www.exploit-db.com/exploits/39370

View Code ZIP pw:eip

References (4)

[Vendor Advisory] http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html

[Vendor Advisory] https://support.apple.com/HT205637

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/39370/

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1034344

Scores

EPSS 0.0029

EPSS Percentile 52.2%

Classification

Status draft

Affected Products (1)

apple/mac_os_x < 10.11.1

Timeline

Published Dec 11, 2015

Tracked Since Feb 18, 2026