|
267651
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
dyld in Apple OS X before 10.11.4 allows attackers to bypass a code-signing protection mechanism via a modified app.
|
CWE-254
7PK - Security Features
|
CVE-2016-1738
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267652
|
6.3 |
MEDIUM
Network
|
apple
|
mac_os_x
|
Carbon in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dfont file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1737
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267653
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
Bluetooth in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1736
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267654
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
Bluetooth in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1735
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267655
|
6.8 |
MEDIUM
Physics
|
apple
|
iphone_os
mac_os_x
|
AppleUSBNetworking in Apple iOS before 9.3 and OS X before 10.11.4 allows physically proximate attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corrupt…
|
CWE-264
CWE-119
Permissions, Privileges, and Access Controls
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1734
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267656
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
AppleRAID in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error')
Improper Input Validation
|
CVE-2016-1733
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267657
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
AppleRAID in Apple OS X before 10.11.4 allows local users to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds read) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1732
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267658
|
6.1 |
MEDIUM
Network
|
microfocus
|
self_service_password_reset
|
Cross-site scripting (XSS) vulnerability in NetIQ Self Service Password Reset (SSPR) 2.x and 3.x before 3.3.1 HF2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2016-1599
|
2024-11-21 11:46 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267659
|
5.9 |
MEDIUM
Network
|
apple
|
software_update
|
Apple Software Update before 2.2 on Windows does not use HTTPS, which makes it easier for man-in-the-middle attackers to spoof updates by modifying the client-server data stream.
|
CWE-310
CWE-345
Cryptographic Issues
Insufficient Verification of Data Authenticity
|
CVE-2016-1731
|
2024-11-21 11:46 |
2016-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267660
|
8.8 |
HIGH
Network
|
google
debian
opensuse
|
chrome
debian_linux
leap
opensuse
suse_linux_enterprise_server
|
Multiple integer signedness errors in the opj_j2k_update_image_data function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1645
|
2024-11-21 11:46 |
2016-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
