Integer Signedness Error in IOBluetoothFamily: Arbitrary Code Execution and Kernel Memory Write Vulnerability

Integer Signedness Error in IOBluetoothFamily: Arbitrary Code Execution and Kernel Memory Write Vulnerability

CVE-2014-4497 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Integer signedness error in IOBluetoothFamily in the Bluetooth implementation in Apple OS X before 10.10 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (write to kernel memory) via a crafted app.

Learn more about our Web Application Penetration Testing UK.