Privilege Escalation via Address Book Framework in Apple OS X

CVE-2015-5897 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The Address Book framework in Apple OS X before 10.11 allows local users to gain privileges by using an environment variable to inject code into processes that rely on this framework.

Learn more about our User Device Pen Test.