Mac OS X 10.11.x < 10.11.2 Multiple Vulnerabilities

The remote host is running a version of Mac OS X that is 10.11.x prior to 10.11.2. It is, therefore, affected by multiple vulnerabilities in the following components : - apachemodphp - AppSandbox - Bluetooth - CFNetwork HTTPProtocol - Compression - Configuration Profiles - CoreGraphics - CoreMedi...

iBackDoor: High-Risk Code Hits iOS Apps

Introduction FireEye mobile researchers recently discovered potentially “backdoored” versions of an ad library embedded in thousands of iOS apps originally published in the Apple App Store. The affected versions of this library embedded functionality in iOS apps that used the library to display...

Apple OS X SecurityAgent Restriction Bypass Vulnerability

OS X formerly Mac OS X is the latest version of Apple's proprietary operating system for the Macintosh computer. iOS is an operating system developed by Apple for mobile devices. A security vulnerability exists in Apple OS X versions prior to 10.11.1 where SecurityAgent fails to prevent synthetic...

CVE-2015-5943

SecurityAgent in Apple OS X before 10.11.1 does not prevent synthetic clicks from reaching keychain windows, which allows attackers to bypass intended access restrictions via a crafted app...

Design/Logic Flaw

SecurityAgent in Apple OS X before 10.11.1 does not prevent synthetic clicks from reaching keychain windows, which allows attackers to bypass intended access restrictions via a crafted app...

iOS core application design vulnerability that exposed the user's Apple ID credentials-vulnerability warning-the black bar safety net

! Check Point alert of the Apple iOS to the core application may be exposed to user credentials. Fortunately iOS 9 contains the relevant patch. Apple ID the ios operating system specifically for user provides convenience to users themselves through an Apple ID to manage the device. Now, iOS marke...

CVE-2015-5915

Apple OS X before 10.11 does not ensure that the keychain's lock state is displayed correctly, which has unspecified impact and attack vectors...

CVE-2015-5854

The backup implementation in Time Machine in Apple OS X before 10.11 allows local users to obtain access to keychain items via unspecified vectors...

CVE-2015-5836

Apple Online Store Kit in Apple OS X before 10.11 improperly validates iCloud keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app...

Information disclosure

The backup implementation in Time Machine in Apple OS X before 10.11 allows local users to obtain access to keychain items via unspecified vectors...

Design/Logic Flaw

Apple Online Store Kit in Apple OS X before 10.11 improperly validates iCloud keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app...

Code injection

Apple OS X before 10.11 does not ensure that the keychain's lock state is displayed correctly, which has unspecified impact and attack vectors...

CVE-2015-5854

The backup implementation in Time Machine in Apple OS X before 10.11 allows local users to obtain access to keychain items via unspecified vectors...

CVE-2015-5854

CVE-2015-5854 : Time Machine backup functionality in Apple OS X prior to 10.11 can allow local users to obtain access to keychain items via unspecified vectors. According to the sources, the vulnerability is associated with OS X Time Machine backups and is addressed by OS X 10.11 El Capitan. Reme...

CVE-2015-5915

Apple OS X before 10.11 does not ensure that the keychain's lock state is displayed correctly, which has unspecified impact and attack vectors...

CVE-2015-5836

Apple Online Store Kit in Apple OS X before 10.11 improperly validates iCloud keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app...

CVE-2015-5915

CVE-2015-5915 affects Apple OS X before 10.11 where the keychain lock state may not be displayed correctly. The initial description notes unspecified impact/attack vectors. Connected CNVD-2015-06402 describes a state management issue enabling an attacker to obtain keychain lock state information....

CVE-2015-5836

CVE-2015-5836 affects Apple OS X prior to 10.11 via Apple Online Store Kit; the vulnerability is improper validation of iCloud keychain item ACLs, which could let a crafted app access keychain items. The impact is access to keychain data as described in the linked Apple security update notes and ...

APPLE-SA-2015-09-30-3 OS X El Capitan 10.11

APPLE-SA-2015-09-30-3 OS X El Capitan 10.11 OS X El Capitan 10.11 is now available and addresses the following: Address Book Available for: Mac OS X v10.6.8 and later Impact: A local attacker may be able to inject arbitrary code to processes loading the Address Book framework Description: An issu...

Apple OS X Time Machine Architecture Backup Vulnerability

Apple OS X is an operating system developed by Apple Inc. Apple OS X has a problem with backups through the time machine architecture, allowing local attackers to exploit vulnerabilities to obtain keychain item information...