CVE-2017-13855

MEDIUM

Apple <11.2, <10.13.2, <4.2, <11.2 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-13855. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit triggers a type confusion vulnerability in macOS by calling getsockopt with SO_NECP_ATTRIBUTES on a UNIX domain socket, leading to out-of-bounds memory access and potential kernel memory disclosure.

Description

An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a crafted app that triggers type confusion.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · cdosmacos

https://www.exploit-db.com/exploits/43318

View Code ZIP pw:eip

This exploit triggers a type confusion vulnerability in macOS by calling getsockopt with SO_NECP_ATTRIBUTES on a UNIX domain socket, leading to out-of-bounds memory access and potential kernel memory disclosure.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: macOS 10.13 (17A405)

No auth needed

Prerequisites: macOS 10.13 (17A405) system

MITRE ATT&CK