CVE-2015-5889
38Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 5.1%
from disclosure to weapon0 days
Published on NVDOct 9
1st PoCOct 1
metasploitOct 1
exploitation probability
5.1%top 9% of all CVEs
observed exploitation
nono source reports it
6 public exploit(s)
rsh in the remote_cmds component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving environment variables.
Affected products
n/a · n/apublic PoCs found — 6
cve_referencepacketstormsecurity.com/files/133826/issetugid-rsh-libmalloc-OS-X-Local-Root.htmlunverifiedcve_referencepacketstormsecurity.com/files/134087/Mac-OS-X-10.9.5-10.10.5-rsh-libmalloc-Privilege-Escalation.htmlunverifiedcve_referencewww.exploit-db.com/exploits/38371/unverifiedcve_referencewww.exploit-db.com/exploits/38540/unverifiedexploitdbwww.exploit-db.com/exploits/38371unverifiedexploitdbwww.exploit-db.com/exploits/38540unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlhttp://packetstormsecurity.com/files/133826/issetugid-rsh-libmalloc-OS-X-Local-Root.htmlhttp://packetstormsecurity.com/files/134087/Mac-OS-X-10.9.5-10.10.5-rsh-libmalloc-Privilege-Escalation.htmlhttp://seclists.org/fulldisclosure/2015/Oct/5https://support.apple.com/HT205267https://www.exploit-db.com/exploits/38371/https://www.exploit-db.com/exploits/38540/http://www.rapid7.com/db/modules/exploit/osx/local/rsh_libmallochttp://www.securityfocus.com/bid/76908http://www.securitytracker.com/id/1033703