CVE-2015-7083

Apple Mac OS X < 10.11.1 - Memory Corruption

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-7083. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit leverages an integer overflow in the NECP system control socket packet parsing in macOS/iOS kernels, leading to a heap-based buffer overflow. It demonstrates a kernel memory corruption vulnerability by crafting malformed policy conditions in a NECP_PACKET_TYPE_POLICY_ADD packet.

Description

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7084.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · cdosmultiple

https://www.exploit-db.com/exploits/39378

View Code ZIP pw:eip

This exploit leverages an integer overflow in the NECP system control socket packet parsing in macOS/iOS kernels, leading to a heap-based buffer overflow. It demonstrates a kernel memory corruption vulnerability by crafting malformed policy conditions in a NECP_PACKET_TYPE_POLICY_ADD packet.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Complex

Reliability

Racy

Target: Apple macOS/iOS kernel (tested on OS X 10.10.5)

Auth required

Prerequisites: Root access to interact with NKE control sockets · Target system running vulnerable macOS/iOS version

MITRE ATT&CK