|CVSS SCORE||4.7, (AV:L/AC:M/Au:N/C:N/I:N/A:C)|
The specific flaw exists within the handling of calls to IOHIDSecurePromptClient. The issue lies in the failure to properly sanitize user-supplied pointers before they are dereferenced. An attacker can leverage this vulnerability to crash an instance of OS X.
02/06/2014 - ZDI sent report to vendor