CVE-2013-3953 - CERT CVE
ID CVE-2013-3953
Sažetak The mach_port_space_info function in osfmk/ipc/mach_debug.c in the XNU kernel in Apple Mac OS X 10.8.x does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap memory via a crafted call.
Reference
CVSS
Base: 4.9
Impact: 6.9
Exploitability:3.9
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE NONE NONE
CVSS vektor AV:L/AC:L/Au:N/C:C/I:N/A:N
Zadnje važnije ažuriranje 11-10-2013 - 03:53
Objavljeno 05-06-2013 - 14:39