Sign-up

ID

VAR-201510-0067


CVE

CVE-2015-5887


TITLE

Apple OS X of Secure Transport of TLS Handshake Protocol Vulnerability in implementation of

Trust: 0.8

sources: JVNDB: JVNDB-2015-005152

DESCRIPTION

The TLS Handshake Protocol implementation in Secure Transport in Apple OS X before 10.11 accepts a Certificate Request message within a session in which no Server Key Exchange message has been sent, which allows remote attackers to have an unspecified impact via crafted TLS data. Supplementary information : CWE Vulnerability type by CWE-17: Code ( code ) Has been identified. http://cwe.mitre.org/data/definitions/17.htmlSkillfully crafted by a third party TLS There is a possibility of unspecified influence through the data. Apple Mac OS X is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code with system privileges, bypass security restrictions, cause denial-of-service conditions, obtain sensitive information, and perform other attacks. These issues affect OS X prior to 10.11. Secure Transport is one of the components used to securely transmit files and data. The vulnerability stems from the fact that the program receives the CertificateRequest information before the ServerKeyExchange information is sent. A remote attacker could use specially crafted TLS data to exploit this vulnerability to obtain certificate information

Trust: 2.07

sources: NVD: CVE-2015-5887 // JVNDB: JVNDB-2015-005152 // BID: 76908 // VULHUB: VHN-83848 // VULMON: CVE-2015-5887

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:lteversion:10.10.5

Trust: 1.0

vendor:applemodel:mac os xscope:ltversion:10.6.8 thats all 10.11

Trust: 0.8

vendor:applemodel:mac os xscope:eqversion:10.10.5

Trust: 0.6

vendor:applemodel:mac osscope:eqversion:x10.7.4

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.7.3

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.7.2

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.7.1

Trust: 0.3

sources: BID: 76908 // JVNDB: JVNDB-2015-005152 // CNNVD: CNNVD-201510-103 // NVD: CVE-2015-5887

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-5887
value: HIGH

Trust: 1.0

NVD: CVE-2015-5887
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201510-103
value: CRITICAL

Trust: 0.6

VULHUB: VHN-83848
value: HIGH

Trust: 0.1

VULMON: CVE-2015-5887
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2015-5887
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-83848
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-83848 // VULMON: CVE-2015-5887 // JVNDB: JVNDB-2015-005152 // CNNVD: CNNVD-201510-103 // NVD: CVE-2015-5887

PROBLEMTYPE DATA

problemtype:CWE-17

Trust: 1.1

problemtype:CWE-Other

Trust: 0.8

sources: VULHUB: VHN-83848 // JVNDB: JVNDB-2015-005152 // NVD: CVE-2015-5887

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201510-103

TYPE

code injection

Trust: 0.6

sources: CNNVD: CNNVD-201510-103

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-005152

PATCH
title:Apple security updatesurl:https://support.apple.com/en-us/HT201222
Trust: 0.8
title:APPLE-SA-2015-09-30-3 OS X El Capitan 10.11url:http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
Trust: 0.8
title:HT205267url:https://support.apple.com/en-us/HT205267
Trust: 0.8
title:HT205267url:http://support.apple.com/ja-jp/HT205267
Trust: 0.8
title:Apple OS X Secure Transport Fixes for component code injection vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=57956
Trust: 0.6
title:Apple: OS X El Capitan v10.11url:https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories&qid=e88bab658248444f5dffc23fd95859e7
Trust: 0.1
sources:
            
            
            VULMON: CVE-2015-5887 // 
            
            
            
            JVNDB: JVNDB-2015-005152 // 
            
            
            
            CNNVD: CNNVD-201510-103

EXTERNAL IDS
db:NVDid:CVE-2015-5887
Trust: 2.9
db:BIDid:76908
Trust: 1.5
db:SECTRACKid:1033703
Trust: 1.2
db:JVNid:JVNVU97220341
Trust: 0.8
db:JVNDBid:JVNDB-2015-005152
Trust: 0.8
db:CNNVDid:CNNVD-201510-103
Trust: 0.7
db:VULHUBid:VHN-83848
Trust: 0.1
db:VULMONid:CVE-2015-5887
Trust: 0.1
sources:
            
            
            VULHUB: VHN-83848 // 
            
            
            
            VULMON: CVE-2015-5887 // 
            
            
            
            BID: 76908 // 
            
            
            
            JVNDB: JVNDB-2015-005152 // 
            
            
            
            CNNVD: CNNVD-201510-103 // 
            
            
            
            NVD: CVE-2015-5887

REFERENCES
url:http://lists.apple.com/archives/security-announce/2015/sep/msg00008.html
Trust: 1.8
url:https://support.apple.com/ht205267
Trust: 1.8
url:http://www.securityfocus.com/bid/76908
Trust: 1.3
url:http://www.securitytracker.com/id/1033703
Trust: 1.2
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-5887
Trust: 0.8
url:http://jvn.jp/vu/jvnvu97220341/index.html
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-5887
Trust: 0.8
url:https://www.apple.com/
Trust: 0.3
url:http://www.apple.com/macosx/
Trust: 0.3
url:https://support.apple.com/en-in/ht205267
Trust: 0.3
url:https://cwe.mitre.org/data/definitions/17.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://support.apple.com/kb/ht205267
Trust: 0.1
url:http://tools.cisco.com/security/center/viewalert.x?alertid=41307
Trust: 0.1
sources:
            
            
            VULHUB: VHN-83848 // 
            
            
            
            VULMON: CVE-2015-5887 // 
            
            
            
            BID: 76908 // 
            
            
            
            JVNDB: JVNDB-2015-005152 // 
            
            
            
            CNNVD: CNNVD-201510-103 // 
            
            
            
            NVD: CVE-2015-5887

CREDITS
Sergi Alvarez (pancake) of NowSecure Research Team, Carlos Moreira, Rainer Dorau of rainer dorau informationsdesign, Chris Nehren, Kai Takac, Hans Douma, Toni Vaahtera, and an anonymous researcher, Maksymilian Arciemowicz of cxsecurity.com, John McCombs of
Trust: 0.3
sources:
            
            
            BID: 76908

SOURCES
db:VULHUBid:VHN-83848
db:VULMONid:CVE-2015-5887
db:BIDid:76908
db:JVNDBid:JVNDB-2015-005152
db:CNNVDid:CNNVD-201510-103
db:NVDid:CVE-2015-5887

LAST UPDATE DATE
2025-04-13T22:34:32.075000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-83848date:2016-12-08T00:00:00
db:VULMONid:CVE-2015-5887date:2016-12-08T00:00:00
db:BIDid:76908date:2015-12-08T22:02:00
db:JVNDBid:JVNDB-2015-005152date:2015-10-13T00:00:00
db:CNNVDid:CNNVD-201510-103date:2015-10-10T00:00:00
db:NVDid:CVE-2015-5887date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:VULHUBid:VHN-83848date:2015-10-09T00:00:00
db:VULMONid:CVE-2015-5887date:2015-10-09T00:00:00
db:BIDid:76908date:2015-09-30T00:00:00
db:JVNDBid:JVNDB-2015-005152date:2015-10-13T00:00:00
db:CNNVDid:CNNVD-201510-103date:2015-10-10T00:00:00
db:NVDid:CVE-2015-5887date:2015-10-09T05:59:21.250