CVE-2015-5932

Vulnerability

A type confusion vulnerability exists in the XNU kernel's Mach task processing code in Apple OS X versions prior to 10.11.1. The issue occurs when the kernel incorrectly handles object types during Mach task operations, leading to memory corruption. This affects OS X Mavericks v10.9.5, OS X Yosemite v10.10.5, and OS X El Capitan 10.11 [1].

Exploitation

An attacker with local access to the system can exploit this vulnerability by executing a specially crafted application that triggers the type confusion during Mach task processing. No additional authentication or user interaction beyond local access is required [1].

Impact

Successful exploitation allows a local attacker to escalate privileges to kernel level, gaining full control over the affected system. This includes the ability to execute arbitrary code with kernel privileges, bypass security mechanisms, and access sensitive data [1].

Mitigation

Apple addressed this vulnerability in OS X El Capitan 10.11.1, as well as Security Update 2015-004 for Yosemite and Security Update 2015-007 for Mavericks. Users should update to the latest available version for their OS X release [1].