Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable802026.PRM
HistorySep 08, 2016 - 12:00 a.m.

Mac OS X < 10.11.6 Multiple Vulnerabilities

2016-09-0800:00:00
Tenable
www.tenable.com
18
JSON

The specific version of Mac OS X that the system is running is reportedly affected by the following vulnerabilities:

  • Apple Mac OS X contains an unspecified NULL pointer dereference flaw in Audio, which may allow a local attacker to cause a denial of service for the system. (CVE-2016-4649)

  • Apple Mac OS X contains a use-after-free flaw in DspFuncLib that is triggered as user-supplied input is not properly validated when handling function IDs. This may allow a local attacker to dereference already freed memory and potentially execute arbitrary code in the context of the kernel. (CVE-2016-4647)

  • Apple Mac OS X contains a use-after-free error in the DspFuncLib extension. The issue is triggered when handling error conditions. With a specially crafted file, a local attacker can dereference already freed memory and potentially execute arbitrary code with root privileges. (CVE-2016-4648)

  • Apple Mac OS X contains an out-of-bounds read flaw in ACMP4AACBaseDecoder that is triggered during the handling of a specially crafted MOV file. This may allow a context-dependent attacker to disclose user information. (CVE-2016-4646)

  • Apple Mac OS X contains an integer overflow in bspatch related to bsdiff that is triggered as bounds are not properly checked. This may allow a local attacker to potentially gain elevated privileges. (CVE-2014-9862)

  • Apple Mac OS X contains a permission flaw in CFNetwork that is triggered during the handling of web browser cookies. This may allow a local attacker to view sensitive user information. (CVE-2016-4645)

  • Apple Mac OS X contains an out-of-bounds read flaw in CoreGraphics that is triggered as input is not properly validated. This may allow a local attacker to disclose kernel memory. (CVE-2016-4652)

  • Multiple Apple products contain a flaw in CoreGraphics. The issue is triggered as user-supplied input is not properly validated. This may allow a remote attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4637)

  • Multiple Apple products contain a flaw in FaceTime that is triggered as user interface inconsistencies occur when handling relayed calls. This may allow a man-in-the-middle attacker to cause a relayed call to continue to transmit audio while the call appears to be terminated. (CVE-2016-4635)

  • Apple Mac OS X contains a flaw in Graphics drivers. The issue is triggered as user-supplied input is not properly validated. This may allow a local attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4634)

  • Apple Mac OS X contains a flaw in ImageIO. The issue is triggered as user-supplied input is not properly validated. This may allow a remote attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4629)

  • Apple Mac OS X contains a flaw in ImageIO. The issue is triggered as user-supplied input is not properly validated. This may allow a remote attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4630)

  • Multiple Apple products contain an unspecified flaw in ImageIO that is triggered as memory is not properly handled. This may allow a remote attacker to cause a consumption of available memory resources. (CVE-2016-4632)

  • Multiple Apple products contain multiple flaws in ImageIO. The issues are triggered as user-supplied input is not properly validated. This may allow a remote attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4631)

  • Apple Mac OS X contains multiple flaws in the Intel Graphics driver. The issues are triggered as user-supplied input is not properly validated when handling memory. This may allow a local attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4633)

  • Multiple Apple products contain an unspecified NULL pointer dereference flaw in IOHIDFamily that is triggered as input is not properly validated. This may allow a local attacker to gain elevated, kernel privileges. (CVE-2016-4626)

  • Apple Mac OS X contains a use-after-free error in IOSurface that is triggered as memory is not properly managed, which may allow a local attacker to dereference already freed memory and gain elevated, kernel privileges. (CVE-2016-4625)

  • Multiple Apple products contain a flaw in Sandbox Profiles that is triggered as restrictions are not properly enforced on privileged API calls. This may allow a local attacker to access the process list. (CVE-2016-4594)

  • Multiple Apple products contain a flaw in the Kernel that is triggered as user-supplied input is not properly validated. This may allow a local attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code with kernel privileges. (CVE-2016-1863)

  • Multiple Apple products contain a flaw in the Kernel that is triggered as user-supplied input is not properly validated. This may allow a local attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code with kernel privileges. (CVE-2016-4582)

  • Multiple Apple products contain an unspecified NULL pointer dereference flaw in Kernel that is triggered as input is not properly validated. This may allow a local attacker to cause a denial of service for the system. (CVE-2016-1865)

  • Apple Mac OS X contains multiple flaws in libc++abi. The issues are triggered as user-supplied input is not properly validated when handling memory. This may allow a local attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code with root privileges. (CVE-2016-4621)

  • Multiple Apple products contain a flaw in libxml2 that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4614)

  • Multiple Apple products contain a flaw in libxml2 that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4615)

  • Multiple Apple products contain a flaw in libxml2 that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4616)

  • Multiple Apple products contain a flaw in libxml2 that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4619)

  • Multiple Apple products contain a flaw in libxslt that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4607)

  • Multiple Apple products contain a flaw in libxslt that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4608)

  • Multiple Apple products contain a flaw in libxslt that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4609)

  • Multiple Apple products contain a flaw in libxslt that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4610)

  • Multiple Apple products contain a flaw in libxslt that is triggered as user-supplied input is not properly validated. This may allow an attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4612)

  • Apple Mac OS X contains an unspecified type confusion flaw in the Login Window, which may allow a local attacker to gain elevated, root privileges. (CVE-2016-4638)

  • Apple Mac OS X contains an overflow condition that is triggered as user-supplied input is not properly validated when interacting with _XRegisterCursorWithData. This may allow a local attacker to cause a heap-based buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code. (CVE-2016-4640)

  • Apple Mac OS X contains a type confusion flaw that is triggered by certain _XSetDictionaryForCurrentSession interactions, which may allow a local attacker to gain elevated privileges. (CVE-2016-4641)

  • Apple Mac OS X contains an unspecified memory initialization flaw in the Login Window, which may allow a local attacker to cause a denial of service. (CVE-2016-4639)

  • Apple Mac OS X contains a flaw in QuickTime. The issue is triggered as user-supplied input is not properly validated when handling a specially crafted SGI file. This may allow a context-dependent attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code. (CVE-2016-4601)

  • Apple Mac OS X contains a flaw in QuickTime. The issue is triggered as user-supplied input is not properly validated when handling a specially crafted Photoshop Document (PSD). This may allow a context-dependent attacker to corrupt memory and potentially execute arbitrary code. (CVE-2016-4599)

  • Apple Mac OS X contains a flaw in QuickTime. The issue is triggered as user-supplied input is not properly validated when handling a specially crafted FlashPix Bitmap (FPX) file. This may allow a context-dependent attacker to corrupt memory and potentially execute arbitrary code. (CVE-2016-4596)

  • Apple Mac OS X contains a flaw in QuickTime. The issue is triggered as user-supplied input is not properly validated when handling a specially crafted FlashPix Bitmap (FPX) file. This may allow a context-dependent attacker to corrupt memory and potentially execute arbitrary code. (CVE-2016-4597)

  • Apple Mac OS X contains a flaw in QuickTime. The issue is triggered as user-supplied input is not properly validated when handling a specially crafted FlashPix Bitmap (FPX) file. This may allow a context-dependent attacker to corrupt memory and potentially execute arbitrary code. (CVE-2016-4600)

  • Apple Mac OS X contains a flaw in QuickTime. The issue is triggered as user-supplied input is not properly validated when handling a specially crafted FlashPix Bitmap (FPX) file. This may allow a context-dependent attacker to corrupt memory and potentially execute arbitrary code. (CVE-2016-4602)

  • Apple Mac OS X contains a flaw in QuickTime. The issue is triggered as user-supplied input is not properly validated when handling a specially crafted image file. This may allow a context-dependent attacker to corrupt memory and potentially execute arbitrary code. (CVE-2016-4598)

  • Apple Mac OS X contains a flaw in the Safari Login AutoFill feature that can cause the user’s password to be displayed unobfuscated on the screen. This may allow a physically present attacker to potentially gain knowledge of a user’s password. (CVE-2016-4595)

  • Multiple Apple products contain a flaw in IOPMrootDomain in the kernel that is triggered as certain input is not properly validated. This may allow a local attacker to corrupt memory and potentially execute code with elevated privileges. (CVE-2016-4653)

  • Multiple Apple Products contain a flaw in CFNetwork Proxies that is due to the transfer of password information in cleartext. This may allow a man-in-the-middle attacker to gain access to password information. (CVE-2016-4642)

  • Multiple Apple Products contain a flaw in CFNetowrk Proxies that is triggered when parsing 407 responses. This may allow a man-in-the-middle attacker to disclose sensitive user information. (CVE-2016-4643)

  • Multiple Apple products contain a downgrade flaw in CFNetwork Proxies that is triggered when saving HTTP authentication credentials in the Keychain. This may allow a man-in-the-middle attacker to disclose sensitive user information. (CVE-2016-4644)

Binary data 802026.prm

References

Related

openvas 17
apple 12
nessus 19
prion 46
cve 45
ubuntucve 8
debiancve 4
redhatcve 4
thn 1
rosalinux 1
cert 1
fedora 1
osv 4
debian 3
seebug 4
zdi 13
zdt 3
talos 4
mageia 2
suse 2
ubuntu 1
checkpoint_advisories 1
gentoo 1
freebsd 1
freebsd_advisory 1
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities (Dec 2016)
2016-12-02 00:00:00
Apple Mac OS X Code Execution And Denial of Service Vulnerabilities
2016-11-22 00:00:00
Huawei EulerOS: Security Advisory for libxslt (EulerOS-SA-2019-2627)
2020-01-23 00:00:00
apple
apple
About the security content of OS X El Capitan v10.11.6 and Security Update 2016-004
2016-07-18 00:00:00
About the security content of OS X El Capitan v10.11.6 and Security Update 2016-004 - Apple Support
2017-11-30 10:28:37
About the security content of watchOS 2.2.2
2016-07-18 00:00:00
nessus
nessus
Mac OS X 10.11.x < 10.11.6 Multiple Vulnerabilities
2016-07-21 00:00:00
Apple iTunes < 12.4.2 Multiple Vulnerabilities (uncredentialed check)
2016-07-19 00:00:00
Apple iTunes < 12.4.2 Multiple Vulnerabilities (credentialed check)
2016-07-19 00:00:00
prion
prion
Memory corruption
2016-07-22 02:59:00
Memory corruption
2016-07-22 02:59:00
Memory corruption
2016-07-22 02:59:00
cve
cve
CVE-2016-4609
2016-07-22 02:59:00
CVE-2016-4607
2016-07-22 02:59:00
CVE-2016-4610
2016-07-22 02:59:00
ubuntucve
ubuntucve
CVE-2016-4607
2016-07-22 00:00:00
CVE-2016-4608
2016-07-22 00:00:00
CVE-2016-4609
2016-07-22 00:00:00
debiancve
debiancve
CVE-2016-4608
2016-07-22 02:59:00
CVE-2016-4609
2016-07-22 02:59:00
CVE-2016-4610
2016-07-22 02:59:00
redhatcve
redhatcve
CVE-2016-4608
2019-05-29 10:52:20
CVE-2016-4610
2019-05-29 10:51:20
CVE-2016-4607
2019-05-29 10:50:38
thn
thn
Beware! Your iPhone Can Be Hacked Remotely With Just A Message
2016-07-20 01:14:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1906
2021-07-02 17:26:03
cert
cert
HTTP CONNECT and 407 Proxy Authentication Required messages are not integrity protected
2016-08-15 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: mingw-libxslt-1.1.33-1.fc30
2019-06-18 18:15:35
osv
osv
libxslt - security update
2019-07-22 00:00:00
bsdiff - security update
2016-11-03 00:00:00
bsdiff vulnerabilities
2020-09-15 20:33:49
debian
debian
[SECURITY] [DLA 1860-1] libxslt security update
2019-07-22 16:16:47
[SECURITY] [DLA 2010-1] bsdiff security update
2019-11-26 21:29:02
[SECURITY] [DLA 697-1] bsdiff security update
2016-11-03 11:36:35
seebug
seebug
Apple Image I/O EXR Compression Remote Code Execution Vulnerability(CVE-2016-4630)
2017-10-17 00:00:00
Apple Core Graphics BMP Framework img_decode_read Remote Code Execution Vulnerability(CVE-2016-4637)
2017-10-17 00:00:00
Apple Image I/O EXR Color Component Remote Code Execution Vulnerability(CVE-2016-4629)
2017-10-17 00:00:00
zdi
zdi
Apple OS X WindowServer _XSetApplicationBindingsForWorkspaces Type Confusion Privilege Escalation Vulnerability
2016-12-15 00:00:00
Apple OS X DspFuncLib Use-After-Free Privilege Escalation Vulnerability
2016-07-20 00:00:00
Apple OS X WindowServer Memory Corruption Privilege Escalation Vulnerability
2016-07-20 00:00:00
zdt
zdt
OS X / iOS Kernel - IOSurface Use-After-Free Vulnerability
2016-11-01 00:00:00
MacOS 10.12 - 'task_t' Privilege Escalation Exploit
2016-11-01 00:00:00
Apple OS X Kernel - IOBluetoothFamily.kext Use-After-Free Exploit
2016-11-01 00:00:00
talos
talos
Apple Image I/O EXR Compression Remote Code Execution Vulnerability
2016-07-18 00:00:00
Apple Core Graphics BMP Framework img_decode_read Remote Code Execution Vulnerability
2016-07-18 00:00:00
Apple Image I/O API Tiled TIFF Remote Code Execution Vulnerability
2016-07-18 00:00:00
mageia
mageia
Updated bsdiff packages fix security vulnerability
2016-08-31 18:32:33
Updated ostree packages fix security vulnerability
2022-09-16 22:39:55
suse
suse
Security update for libostree (important)
2022-09-06 00:00:00
Security update for libostree (important)
2022-09-28 00:00:00
ubuntu
ubuntu
bsdiff vulnerabilities
2020-09-15 00:00:00
checkpoint_advisories
checkpoint_advisories
FreeBSD bspatch Utility Remote Code Execution (CVE-2014-9862)
2016-08-23 00:00:00
gentoo
gentoo
Binary diff: Heap-based buffer overflow
2020-03-19 00:00:00
freebsd
freebsd
FreeBSD -- Heap vulnerability in bspatch
2016-07-25 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-16:25.bspatch
2016-07-25 00:00:00
JSON
Related for 802026.PRM
openvas17apple12nessus19prion46cve45ubuntucve8debiancve4redhatcve4thn1rosalinux1cert1fedora1osv4debian3seebug4zdi13zdt3talos4mageia2suse2ubuntu1checkpoint_advisories1gentoo1freebsd1freebsd_advisory1