CVE-2017-2409

Vulnerability

An out-of-bounds read vulnerability exists in the Menus component of Apple macOS prior to version 10.12.4. The issue is present in macOS Sierra 10.12.3 and earlier. A crafted application can trigger the out-of-bounds condition, leading to sensitive information disclosure or an application crash (denial of service). [1]

Exploitation

To exploit the vulnerability, an attacker must trick a user into running a maliciously crafted application on an affected macOS system. No other special network position or authentication is required beyond the ability to execute the crafted app under the user's context. [1]

Impact

Successful exploitation can result in the disclosure of sensitive information from kernel memory due to the out-of-bounds read, or cause a denial of service via application crash. The crash may affect the Menus component or potentially other system stability. The privilege level achieved is at the user level, but the information disclosure might expose data that could be used for further attacks. [1]

Mitigation

The vulnerability is fixed in macOS 10.12.4, released by Apple on March 27, 2017. Users should update to macOS Sierra 10.12.4 or later via the Mac App Store. No workaround is available for unpatched systems. The vulnerability is not known to be listed in CISA's KEV. [1]