3 matches found
Mac OS X Multiple EFI Vulnerabilities (EFI Security Update 2015-001)
The remote Mac OS X host is running EFI firmware that is affected by multiple vulnerabilities : - An insufficient locking issue exists, when resuming from sleep states, which allows a local attacker to write to the EFI flash memory by using an crafted application with root privileges. CVE-2015-36...
APPLE-SA-2015-06-30-3 Mac EFI Security Update 2015-001
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2015-06-30-3 Mac EFI Security Update 2015-001 Mac EFI Security Update 2015-001 is now available and addresses the following: EFI Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5 Impact: A malicious application with root...
CVE-2015-3693
Apple Mac EFI before 2015-001 on OS X versions including pre-10.10.4 is affected by a rowhammer‑style memory corruption issue (CVE-2015-3693) caused by insufficient DDR3 memory refresh handling. This could enable remote attackers to cause memory corruption and gain privileges or trigger a denial ...