EIP-2026-104563

PRE-CVE

Apple Mac OSX Keychain - EXC_BAD_ACCESS Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104563. PoCs published by Juan Sacco.

AI-analyzed exploit summary This is a crash report and manual reproduction steps for a DoS vulnerability in OSX Keychain Access 9.0 (55161) on OSX Yosemite 10.10.4. The issue involves a SIGSEGV (EXC_BAD_ACCESS) in the `SecCertificateSetPreference` function when adding a certificate preference with excessive input.

Description

Apple Mac OSX Keychain - EXC_BAD_ACCESS Denial of Service

Exploits (1)

exploitdb WRITEUP

by Juan Sacco · textdososx

https://www.exploit-db.com/exploits/37741

View Code ZIP pw:eip

This is a crash report and manual reproduction steps for a DoS vulnerability in OSX Keychain Access 9.0 (55161) on OSX Yosemite 10.10.4. The issue involves a SIGSEGV (EXC_BAD_ACCESS) in the `SecCertificateSetPreference` function when adding a certificate preference with excessive input.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: OSX Keychain Access 9.0 (55161)

No auth needed

Prerequisites: Access to OSX Keychain Access application · User interaction to trigger the vulnerability

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026