CVE-2015-5897

CVE-2015-5897

EPSS 0.3%

The Address Book framework in Apple OS X before 10.11 allows local users to gain privileges by using an environment variable to inject code into processes that rely on this framework.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html https://support.apple.com/HT205267 http://www.securitytracker.com/id/1033703