Lucene search
AppleCVE-2015-3794HistoryAug 17, 2015 - 12:00 a.m.
CVE-2015-3794
2015-08-1700:00:08
CWE-119
apple
web.nvd.nist.gov
37
cve-2015-3794
apple os x
speech ui
remote attack
arbitrary code execution
denial of service
memory corruption
application crash
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
9.3
Confidence
High
EPSS
0.01
Percentile
83.5%
The Speech UI in Apple OS X before 10.10.5, when speech alerts are enabled, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Unicode string.
Affected configurations
Node
applemac_os_xRange≤10.10.4
Related
nvd
nvd
CVE-2015-3794
2015-08-17 00:00:08
prion
prion
Design/Logic Flaw
2015-08-17 00:00:00
cvelist
cvelist
CVE-2015-3794
2015-08-16 23:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-03 (Oct 2015)
2015-10-29 00:00:00
nessus
nessus
Mac OS X < 10.10.5 Multiple Vulnerabilities
2015-10-16 00:00:00
Mac OS X 10.10.x < 10.10.5 Multiple Vulnerabilities
2015-08-17 00:00:00
securityvulns
securityvulns
Apple Mac OS X / OS X Server multiple security vulnerabilities
2015-08-17 00:00:00
APPLE-SA-2015-08-13-2 OS X Yosemite v10.10.5 and Security Update 2015-006
2015-08-17 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
9.3
Confidence
High
EPSS
0.01
Percentile
83.5%
Related for CVE-2015-3794