Predictable Location of CPU Global Descriptor Table Allows ASLR Bypass in Apple OS X

Predictable Location of CPU Global Descriptor Table Allows ASLR Bypass in Apple OS X

CVE-2014-4403 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The kernel in Apple OS X before 10.9.5 allows local users to obtain sensitive address information and bypass the ASLR protection mechanism by leveraging predictability of the location of the CPU Global Descriptor Table.

Learn more about our User Device Pen Test.