Lucene search
+L

145 matches found

BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.12 views

Vulnerabilities of iOS and Mac OS X operating systems, allowing attackers to execute arbitrary code in a privileged context

The vulnerability of the Kernel component in iOS and Mac OS X operating systems arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker to execute arbitrary code in a privileged context racing environment through a specially created...

7.6CVSS7.9AI score0.04748EPSS
Exploits2References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/04/13 12:0 a.m.9 views

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of iOS and Mac OS X operating systems arises from operations that occur outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption through a specially creat...

9.3CVSS8.1AI score0.04263EPSS
Exploits2References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/03/09 12:0 a.m.3 views

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the Kernel component in iOS and Mac OS X operating systems arises from the execution of an operation outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in a privileged context, or to cause a service failure memory...

9.3CVSS8.3AI score0.01354EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2017/02/20 8:59 a.m.2 views

CVE-2016-7644

An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service...

7.8CVSS8.8AI score0.0676EPSS
Exploits5References6
OSV
OSV
added 2017/02/20 8:59 a.m.1 views

CVE-2016-7591

An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "IOHIDFamily" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service...

6.5CVSS6.1AI score0.01358EPSS
Exploits0References5
CNVD
CNVD
added 2016/12/16 12:0 a.m.6 views

Joyent SmartOS Hyprlofs File Local Stack Buffer Overflow Vulnerability

Joyent SmartOS is a set of open source operating system from Joyent, USA. A local stack buffer overflow vulnerability exists in the Hyprlofs file system in Joyent SmartOS version 20161110T013148Z. The vulnerability allows an attacker to execute arbitrary code using elevated privileges. A failed...

7CVSS7.8AI score0.00544EPSS
Exploits3References1
BDU FSTEC
BDU FSTEC
added 2016/10/14 12:0 a.m.5 views

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the IOAcceleratorFamily component in iOS and Mac OS X operating systems arises from operations that occur outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or cause a service failure memory...

9.3CVSS8.1AI score0.0157EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/10/14 12:0 a.m.9 views

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the IOThunderboltFamily component of the Mac OS X operating system arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or cause a service failure memory...

9.3CVSS8.2AI score0.01331EPSS
Exploits0References3Affected Software1
exploitpack
exploitpack
added 2016/09/26 12:0 a.m.34 views

Microsoft Windows 8.1 Update 2 10 10586 (x86x64) - NtLoadKeyEx User Hive Attachment Point Privilege Escalation (MS16-111)

Microsoft Windows 8.1 Update 2 10 10586 x86x64 - NtLoadKeyEx User Hive Attachment Point Privilege Escalation MS16-111 / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=865 Windows: NtLoadKeyEx User Hive Attachment Point EoP Platform: Windows 10 10586 32/64 and 8.1 Update 2, not...

0.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/06/09 12:0 a.m.5 views

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the kernel in iOS and Mac OS X operating systems arises due to buffer overflows. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption through a specially created application...

9.3CVSS8.1AI score0.05599EPSS
Exploits3References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/06/09 12:0 a.m.6 views

The vulnerability of the Mac OS X operating system allows a hacker to execute arbitrary code in a privileged context.

The vulnerability of the Apple Type Services component of the Mac OS X operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in a privileged context using a specially created application...

9.3CVSS7.7AI score0.01655EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/06/09 12:0 a.m.6 views

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of iOS and Mac OS X operating systems arises due to buffer overflows. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption through a specially created application...

9.3CVSS8.1AI score0.04789EPSS
Exploits2References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2016/06/09 12:0 a.m.3 views

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the kernel in iOS and Mac OS X operating systems arises due to buffer overflows. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption through a specially created application...

8.5CVSS8.1AI score0.01619EPSS
Exploits0References10Affected Software2
OSV
OSV
added 2016/05/20 10:59 a.m.2 views

CVE-2016-1819

Use-after-free vulnerability in the IOAccelContext2::clientMemoryForType method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a craft...

7.8CVSS6.1AI score0.04789EPSS
Exploits2References13
Cent OS
Cent OS
added 2016/05/09 5:51 p.m.80 views

ImageMagick security update

CentOS Errata and Security Advisory CESA-2016:0726 An update for ImageMagick is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...

10CVSS6.8AI score0.97485EPSS
Exploits13References7
OSV
OSV
added 2016/03/24 1:59 a.m.2 views

CVE-2016-1750

Use-after-free vulnerability in the kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context via a crafted app...

7.8CVSS7.6AI score0.01587EPSS
Exploits0References9
CVE
CVE
added 2013/05/01 10:0 a.m.65 views

CVE-2013-3079

VMware vCenter Server Appliance (vCSA) 5.1 before Update 1 contains a remote authenticated code execution vulnerability in the Virtual Appliance Management Interface (VAMI). An authenticated attacker with VAMI access can run arbitrary programs with root privileges. The issue is addressed by VMwar...

9CVSS7.2AI score0.01737EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.30 views

Mandriva Linux Security Advisory : libtiff (MDVSA-2012:127)

A vulnerability was found and corrected in libtiff : A heap-based buffer overflow flaw was found in the way tiff2pdf, a TIFF image to a PDF document conversion tool, of libtiff, a library of functions for manipulating TIFF Tagged Image File Format image format files, performed write of TIFF image...

6.8CVSS8.9AI score0.0407EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/10/21 12:0 a.m.56 views

JVN#48097065: TeraPad may insecurely load dynamic libraries

TeraPad is a text editor. TeraPad loads certain DLL's when TXT files are opened. TeraPad contains an issue with the DLL search path, which may lead to insecurely loading dynamic libraries. Impact An attacker may execute arbitrary code with the privilege of running the application. Solution Update...

6.9CVSS7.2AI score0.00283EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2010/04/05 12:0 a.m.56 views

Sun Java Runtime Environment Trusted Methods Chaining Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun Java Runtime. Authentication is not required to exploit this vulnerability. The specific flaw exists within the code responsible for ensuring proper privileged execution of methods. If an...

10CVSS2.8AI score0.96319EPSS
Exploits5
Rows per page
Query Builder