|
274911
|
- |
|
apple
|
mac_os_x
|
The kernel in Apple OS X before 10.10.4 does not properly manage memory in kernel-extension APIs, which allows attackers to obtain sensitive memory-layout information via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-3720
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274912
|
- |
|
apple
|
mac_os_x
iphone_os
|
TrueTypeScaler in FontParser in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3719
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274913
|
- |
|
apple
|
mac_os_x
|
systemstatsd in the System Stats subsystem in Apple OS X before 10.10.4 does not properly interpret data types encountered in interprocess communication, which allows attackers to execute arbitrary c…
|
NVD-CWE-Other
|
CVE-2015-3718
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274914
|
- |
|
sqlite
apple
|
sqlite
mac_os_x
iphone_os
|
Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allow remote attackers to execute arbitrary code or cause a denial of service…
|
CWE-120
Classic Buffer Overflow
|
CVE-2015-3717
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274915
|
- |
|
apple
|
mac_os_x
|
Spotlight in Apple OS X before 10.10.4 allows attackers to execute arbitrary commands via a crafted name of a photo file within the local photo library.
|
CWE-77
Command Injection
|
CVE-2015-3716
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274916
|
- |
|
apple
|
mac_os_x
|
The code-signing implementation in Apple OS X before 10.10.4 does not properly consider libraries that are external to an application bundle, which allows attackers to bypass intended launch restrict…
|
CWE-254
7PK - Security Features
|
CVE-2015-3715
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274917
|
- |
|
apple
|
mac_os_x
|
Apple OS X before 10.10.4 does not properly consider custom resource rules during app signature verification, which allows attackers to bypass intended launch restrictions via a modified app.
|
CWE-254
7PK - Security Features
|
CVE-2015-3714
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274918
|
- |
|
apple
|
mac_os_x
quicktime
|
QuickTime in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted movie file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3713
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274919
|
- |
|
apple
|
mac_os_x
|
The NVIDIA graphics driver in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds write) via a crafted app.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3712
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274920
|
- |
|
apple
|
mac_os_x
|
The NTFS implementation in Apple OS X before 10.10.4 allows attackers to obtain sensitive memory-layout information for the kernel via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-3711
|
2024-11-21 11:29 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
