Date published: 2014-02-26T20:55:03.850-05:00
Date last modified: 2014-02-27T14:36:56.437-05:00
CVSS Score: 7.5
Principal attack vector: NETWORK
Reference URL: http://support.apple.com/kb/HT6150
Summary: Apple Type Services (ATS) in Apple OS X before 10.9.2 does not properly validate calls to the free function, which allows attackers to bypass the App Sandbox protection mechanism via crafted Mach messages.