Remote Code Execution Vulnerability in Apple OS X IOHIDSecurePromptClient Function

Remote Code Execution Vulnerability in Apple OS X IOHIDSecurePromptClient Function

CVE-2014-7861 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The IOHIDSecurePromptClient function in Apple OS X does not properly validate pointer values, which allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via a crafted web site.

Learn more about our Web App Pen Testing.