24 matches found
EUVD-2018-16014
Malware in sbrugna...
EUVD-2017-11619
Malware in sbrugna...
EUVD-2017-11620
Malware in sbrugna...
The vulnerability of the IOFireWireAVC component of the Mac OS X operating system allows a hacker to execute arbitrary code with kernel privileges.
The vulnerability of the IOFireWireAVC component in the Mac OS X operating system is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability allows an attacker to execute arbitrary code with kernel privileges through a specially created...
CVE-2018-4228
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages a race condition...
Race condition
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages a race condition...
CVE-2018-4228
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages a race condition...
CVE-2018-4228
The CVE-2018-4228 entry concerns macOS pre-10.13.5 and the IOFireWireAVC component. The vulnerability is described as a race condition that could allow a crafted app to execute arbitrary code with kernel privileges, i.e., a local escalation in a privileged context. Connected sources corroborate t...
Apple macOS High Sierra Arbitrary Code Execution Vulnerability (CNVD-2018-12162)
Apple macOS High Sierra is a specialized operating system for Mac computers developed by Apple Inc. in the U.S. IOFireWireAVC is one of the IO video transport components. A security vulnerability exists in the IOFireWireAVC component in Apple macOS High Sierra versions prior to 10.13.5. The...
The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.
The vulnerability of the IOFireWireAVC component in the Mac OS X operating system arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption...
The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or increase their privileges.
The vulnerability of the IOFireWireAVC component of the Mac OS X operating system arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to increase their privileges or cause a service failure memory corruption by using undefin...
Apple macOS IOFireWireAVC elevation of privilege vulnerability
Apple macOS is a specialized operating system developed by Apple for Mac computers.IOFireWireAVC is one of the IO video transmission components. An elevation of privilege vulnerability exists in the IOFireWireAVC component in Apple macOS versions prior to 10.12.4. An attacker could use this...
CVE-2017-2437
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
CVE-2017-2436
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2017-2437
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
Memory corruption
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
Memory corruption
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2017-2436
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2017-2436
CVE-2017-2436 concerns the IOFireWireAVC kernel extension in macOS Sierra (affected: macOS before 10.12.4). The connected documents reveal a concrete root cause: in IOFireWireAVCUserClient::CreateAVCAsyncCommand, the length parameter len is used to compute cmdLen, then a pointer from the user-con...
CVE-2017-2437
Summary: CVE-2017-2437 affects macOS Sierra prior to 10.12.4, specifically the IOFireWireAVC component, enabling a local attacker to gain privileges or cause a denial of service via memory corruption. The Apple security content for macOS Sierra 10.12.4 documents the update and lists IOFireWireAVC...