Sandbox Bypass Vulnerability in LaunchServices on Apple OS X

Sandbox Bypass Vulnerability in LaunchServices on Apple OS X

CVE-2014-4437 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

LaunchServices in Apple OS X before 10.10 allows attackers to bypass intended sandbox restrictions via an application that specifies a crafted handler for the Content-Type field of an object.

Learn more about our Web Application Penetration Testing UK.