LaunchServices in Apple OS X before 10.10 allows attackers to bypass intended sandbox restrictions via an application that specifies a crafted handler for the Content-Type field of an object.
References
Configurations
History
No history.
Information
Published : 2014-10-18 01:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-4437
Mitre link : CVE-2014-4437
CVE.ORG link : CVE-2014-4437
JSON object : View
Products Affected
apple
- mac_os_x
CWE
CWE-264
Permissions, Privileges, and Access Controls