Bypassing Entitlement Protection Mechanism in Apple iOS: Arbitrary Process Access

Bypassing Entitlement Protection Mechanism in Apple iOS: Arbitrary Process Access

CVE-2015-5882 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The processor_set_tasks API implementation in Apple iOS before 9 allows local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes by leveraging root privileges.

Learn more about our Cis Benchmark Audit For Apple Ios.