Privilege Escalation via Union Mounts in Apple OS X

CVE-2015-7044 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:C

The System Integrity Protection feature in Apple OS X before 10.11.2 mishandles union mounts, which allows attackers to execute arbitrary code in a privileged context via a crafted app with root privileges.

Learn more about our Web Application Penetration Testing UK.