← volver
CVE-2015-5889

CVE-2015-5889

EPSS 5.1%
rsh in the remote_cmds component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving environment variables.
Productos afectados
n/a · n/a
PoCs públicas encontradas6
cve_referencepacketstormsecurity.com/files/133826/issetugid-rsh-libmalloc-OS-X-Local-Root.htmlno verificadocve_referencepacketstormsecurity.com/files/134087/Mac-OS-X-10.9.5-10.10.5-rsh-libmalloc-Privilege-Escalation.htmlno verificadocve_referencewww.exploit-db.com/exploits/38371/no verificadocve_referencewww.exploit-db.com/exploits/38540/no verificadoexploitdbwww.exploit-db.com/exploits/38371no verificadoexploitdbwww.exploit-db.com/exploits/38540no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlhttp://packetstormsecurity.com/files/133826/issetugid-rsh-libmalloc-OS-X-Local-Root.htmlhttp://packetstormsecurity.com/files/134087/Mac-OS-X-10.9.5-10.10.5-rsh-libmalloc-Privilege-Escalation.htmlhttp://seclists.org/fulldisclosure/2015/Oct/5https://support.apple.com/HT205267https://www.exploit-db.com/exploits/38371/https://www.exploit-db.com/exploits/38540/http://www.rapid7.com/db/modules/exploit/osx/local/rsh_libmallochttp://www.securityfocus.com/bid/76908http://www.securitytracker.com/id/1033703