CVE-2014-7861 Information

Description

The IOHIDSecurePromptClient function in Apple OS X does not properly validate pointer values which allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via a crafted web site.

Reference

http://www.securityfocus.com/bid/70249 http://zerodayinitiative.com/advisories/ZDI-14-346/