CVE-2014-1256

CWE-119 — Buffer Overflow3 documents3 sources

Severity

7.5HIGH

EPSS

0.4%

top 40.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedFeb 27

Latest updateMay 17

Description

Buffer overflow in Apple Type Services (ATS) in Apple OS X before 10.9.2 allows attackers to bypass the App Sandbox protection mechanism via crafted Mach messages.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDapple/mac_os_x10.9.1+13

▶NVDapple/mac_os_x_server6 versions+5

🔴Vulnerability Details

GHSA

GHSA-6wm8-h29f-7frj: Buffer overflow in Apple Type Services (ATS) in Apple OS X before 10↗2022-05-17

▶

CVEList

CVE-2014-1256: Buffer overflow in Apple Type Services (ATS) in Apple OS X before 10↗2014-02-27

▶