CVE-2015-1145

Vulnerability

CVE-2015-1145 is a signature validation flaw in the Code Signing implementation of Apple OS X prior to version 10.10.3. The bug allows a specially crafted bundle to bypass access restrictions enforced by code signing. Affected versions include OS X Yosemite v10.10 through v10.10.2. This is distinct from the related CVE-2015-1146 [1].

Exploitation

A local user with the ability to craft and run a malicious bundle can exploit this vulnerability. No special privileges or network access are required beyond local code execution capability. The attacker constructs a bundle that exploits the improper signature validation to circumvent the intended access restrictions.

Impact

Successful exploitation allows a local attacker to bypass code signing requirements, potentially gaining access to resources or capabilities that should be restricted by the sandbox or other security policies. This can lead to unauthorized information disclosure or privilege escalation within the context of the user's session.

Mitigation

Apple addressed this vulnerability in OS X Yosemite v10.10.3 and Security Update 2015-004. Users should update to the latest available version of OS X. No workarounds are listed in the advisory [1]. The vulnerability is not listed on CISA's Known Exploited Vulnerabilities (KEV) catalog.