Описание
The processor_set_tasks API implementation in Apple iOS before 9 allows local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes by leveraging root privileges.
The processor_set_tasks API implementation in Apple iOS before 9 allows local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes by leveraging root privileges.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-5882
- https://support.apple.com/HT205212
- https://support.apple.com/HT205213
- https://support.apple.com/HT205267
- http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html
- http://lists.apple.com/archives/security-announce/2015/Sep/msg00005.html
- http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
- http://www.securityfocus.com/bid/76764
- http://www.securitytracker.com/id/1033609
Связанные уязвимости
The processor_set_tasks API implementation in Apple iOS before 9 allows local users to bypass an entitlement protection mechanism and obtain access to the task ports of arbitrary processes by leveraging root privileges.
Уязвимость операционной системы iOS, позволяющая нарушителю обойти существующие механизмы защиты и просканировать порты случайных процессов