EUVD-2010-0091

Malware in sbrugna...

The vulnerability of the CoreAudio component in operating systems such as MacOS, tvOS, iPadOS, and iOS allows a hacker to trigger a service failure.

The vulnerability of the CoreAudio component in macOS, tvOS, iPadOS, and iOS operating systems is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the CoreAudio component in operating systems such as MacOS Sequoia, tvOS, visionOS, iOS, and iPadOS allows a hacker to execute arbitrary code.

The vulnerability of the CoreAudio component in MacOS Sequoia, tvOS, visionOS, iOS, and iPadOS relates to reading beyond the buffer boundary in memory. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

About the security content of iOS 18.4.1 and iPadOS 18.4.1

About the security content of iOS 18.4.1 and iPadOS 18.4.1 This document describes the security content of iOS 18.4.1 and iPadOS 18.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

About the security content of visionOS 2.4.1

About the security content of visionOS 2.4.1 This document describes the security content of visionOS 2.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

About the security content of tvOS 18.4.1

About the security content of tvOS 18.4.1 This document describes the security content of tvOS 18.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

About the security content of macOS Sequoia 15.4.1

About the security content of macOS Sequoia 15.4.1 This document describes the security content of macOS Sequoia 15.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

The vulnerability of the CoreAudio component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS allows a hacker to trigger a service failure.

The vulnerability of the CoreAudio component in macOS, iOS, iPadOS, watchOS, tvOS, and visionOS stems from insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to cause service failures...

Apple macOS Big Sur 缓冲区错误漏洞

Apple macOS Big Sur is a mobile application app from Apple USA Inc. Apple macOS Big Sur CoreAudio suffers from a buffer error vulnerability that originates from parsing maliciously crafted audio files that could lead to the disclosure of user information. The following products and versions are...

Apple macOS Big Sur 输入验证错误漏洞

Apple macOS Big Sur is a mobile application app from Apple USA Inc. Apple macOS Big Sur 11.5 suffers from an input validation error vulnerability that stems from insufficient validation of user-provided input in the CoreAudio subsystem. A remote attacker could exploit the vulnerability to deliver...

Apple macOS Big Sur 缓冲区错误漏洞

Apple macOS Big Sur is a mobile application app from Apple USA Inc. Apple macOS Big Sur 11.5 suffers from a buffer error vulnerability that stems from a boundary error when processing audio files in the CoreAudio subsystem. A remote attacker can exploit the vulnerability to create a specially...

About the security content of iOS 14.2 and iPadOS 14.2

About the security content of iOS 14.2 and iPadOS 14.2 This document describes the security content of iOS 14.2 and iPadOS 14.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

About the security content of macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave

About the security content of macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave This document describes the security content of macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. About Apple security updates F...

Multiple Apple Products CoreAudio Component Out-of-Bounds Read Vulnerability

Apple iOS is a product of Apple Inc. Apple iOS is an operating system developed for mobile devices. apple tvOS is a smart TV operating system. apple watchOS is a smart watch operating system. coreAudio is a core audio component. An out-of-bounds read vulnerability exists in the CoreAudio componen...

CVE-2017-7008

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. The issue involves the "CoreAudio" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and...

Multiple Apple Products CoreAudio Component Information Disclosure Vulnerability

Apple iOS is a product of Apple Inc. Apple iOS is an operating system for mobile devices; tvOS is a smart TV operating system. coreAudio is one of the core audio components. An information disclosure vulnerability exists in the CoreAudio component of several Apple products. An attacker can exploi...

Apple Plugs Critical iPhone Security Holes

Apple has shipped a patch to cover five documented vulnerabilities that expose iPhone and iPod Touch users to malicious hacker attacks. The most serious flaw could allow remote code execution if an iPhone/iPod Touch user opens audio and image files. Here’s the skinny on the vulnerabilities being...

PT-2010-1861 · Apple · Coreaudio +1

Name of the Vulnerable Software and Affected Versions: Apple Mac OS X versions 10.5.8 through 10.6.2 Description: The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted MP4 audio file. This is due to a buffer overflow in CoreAudio. Recommendations:...

CVE-2007-3747

CVE-2007-3747 affects Apple Mac OS X 10.3.9 and 10.4.10 via the CoreAudio Java interface. The issue allows remote attackers to execute arbitrary code by crafting an applet because object instantiation/manipulation is not restricted to valid heap addresses. Public sources describe this as a remote...