SecuritySpace - CVE-2014-4498

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2014-4498

Description: The CPU Software in Apple OS X before 10.10.2 allows physically proximate attackers to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-4498
http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html
https://trmm.net/Thunderstrike
http://www.securitytracker.com/id/1031650

CVE ID:	CVE-2014-4498
Description:	The CPU Software in Apple OS X before 10.10.2 allows physically proximate attackers to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2014-4498 http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html https://trmm.net/Thunderstrike http://www.securitytracker.com/id/1031650