21 matches found
EUVD-2018-16014
Malware in sbrugna...
EUVD-2017-11620
Malware in sbrugna...
EUVD-2017-11619
Malware in sbrugna...
CVE-2018-4228
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages a race condition...
Race condition
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages a race condition...
CVE-2018-4228
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages a race condition...
CVE-2018-4228
The CVE-2018-4228 entry concerns macOS pre-10.13.5 and the IOFireWireAVC component. The vulnerability is described as a race condition that could allow a crafted app to execute arbitrary code with kernel privileges, i.e., a local escalation in a privileged context. Connected sources corroborate t...
Apple macOS High Sierra Arbitrary Code Execution Vulnerability (CNVD-2018-12162)
Apple macOS High Sierra is a specialized operating system for Mac computers developed by Apple Inc. in the U.S. IOFireWireAVC is one of the IO video transport components. A security vulnerability exists in the IOFireWireAVC component in Apple macOS High Sierra versions prior to 10.13.5. The...
Apple macOS IOFireWireAVC elevation of privilege vulnerability
Apple macOS is a specialized operating system developed by Apple for Mac computers.IOFireWireAVC is one of the IO video transmission components. An elevation of privilege vulnerability exists in the IOFireWireAVC component in Apple macOS versions prior to 10.12.4. An attacker could use this...
CVE-2017-2437
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
CVE-2017-2437
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
CVE-2017-2436
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
Memory corruption
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
Memory corruption
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
CVE-2017-2437
Summary: CVE-2017-2437 affects macOS Sierra prior to 10.12.4, specifically the IOFireWireAVC component, enabling a local attacker to gain privileges or cause a denial of service via memory corruption. The Apple security content for macOS Sierra 10.12.4 documents the update and lists IOFireWireAVC...
CVE-2017-2437
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
CVE-2017-2436
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2017-2436
CVE-2017-2436 concerns the IOFireWireAVC kernel extension in macOS Sierra (affected: macOS before 10.12.4). The connected documents reveal a concrete root cause: in IOFireWireAVCUserClient::CreateAVCAsyncCommand, the length parameter len is used to compute cmdLen, then a pointer from the user-con...
Mac OS X 10.x < 10.12.4 Multiple Vulnerabilities
Binary data 700032.prm...
macOS 10.12.x < 10.12.4 Multiple Vulnerabilities (httpoxy)
The remote host is running a version of macOS that is 10.12.x prior to 10.12.4. It is, therefore, affected by multiple vulnerabilities in multiple components, some of which are remote code execution vulnerabilities. An unauthenticated, remote attacker can exploit these remote code execution...