|
266631
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
CoreStorage in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
|
CWE-284
Improper Access Control
|
CVE-2016-1805
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266632
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
The Multi-Touch subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1804
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266633
|
7.8 |
HIGH
Local
|
apple
|
watchos
iphone_os
mac_os_x
tvos
|
CoreCapture in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-1803
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266634
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os
mac_os_x
tvos
watchos
|
CCCrypt in CommonCrypto in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 mishandles return values during key-length calculations, which allows attackers to …
|
CWE-200
Information Exposure
|
CVE-2016-1802
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266635
|
7.5 |
HIGH
Network
|
apple
|
mac_os_x
iphone_os
tvos
|
The CFNetwork Proxies subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 mishandles URLs in http and https requests, which allows remote attackers to obtain sensitive inf…
|
CWE-200
Information Exposure
|
CVE-2016-1801
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266636
|
8.8 |
HIGH
Network
|
apple
|
mac_os_x
|
Captive Network Assistant in Apple OS X before 10.11.5 mishandles a custom URL scheme, which allows user-assisted remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2016-1800
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266637
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
Audio in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1799
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266638
|
3.3 |
LOW
Local
|
apple
|
mac_os_x
|
Audio in Apple OS X before 10.11.5 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.
|
NVD-CWE-Other
|
CVE-2016-1798
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266639
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to bypass intended FontValidator sandbox-policy restrictions and execute arbitrary code in a privileged context via a crafted a…
|
CWE-284
Improper Access Control
|
CVE-2016-1797
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266640
|
3.3 |
LOW
Local
|
apple
|
mac_os_x
|
Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds memory access) via a crafted a…
|
CWE-200
Information Exposure
|
CVE-2016-1796
|
2024-11-21 11:47 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
