Lucene search
K

382 matches found

CNVD
CNVD
added 2019/01/10 12:0 a.m.2 views

MacPaw CleanMyMac X Input Validation Vulnerability (CNVD-2019-23277)

MacPaw CleanMyMac X is a cleaning tool dedicated to the macOS platform. The product is capable of removing junk files, history cache, logs, etc. from your computer. MacPaw CleanMyMac X version 4.04 suffers from an input validation vulnerability that can be exploited by local attackers to cause a...

7.1CVSS6.5AI score0.00309EPSS
Exploits0References1
0day.today
0day.today
added 2018/12/06 12:0 a.m.67 views

macOS 10.14.1 Carbon Core Memory corruption Vulnerability

CVE: CVE-2018-4463 Old and funny bug CVE-2018-4463 was patched by Apple in last macOS security update. Since 2015 Apple was exposing the users using Apple’s filesystem for stack overflow and infection by hidedd malware in DMG image. Insufficient patch for old vulnerability is the cause of problem...

9.3CVSS0.2AI score0.00796EPSS
Exploits1
Prion
Prion
added 2018/02/01 1:29 p.m.24 views

Design/Logic Flaw

Nibbleblog 4.0.5 on macOS defaults to having .DSStore in each directory, causing DSStore information to leak...

5CVSS5AI score0.01086EPSS
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2018/01/29 12:0 a.m.44 views

macOS - 'sysctl_vfs_generic_conf' Stack Leak Through Struct Padding

/ The sysctls vfs.generic.conf. are handled by sysctlvfsgenericconf, which is implemented as follows: static int sysctlvfsgenericconf SYSCTLHANDLERARGS int name, namelen; struct vfstable vfsp; struct vfsconf vfsc; voidoidp; name = arg1; namelen = arg2; check for namelen==1 mountlistlock; for vfsp...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/01/11 12:0 a.m.14 views

macOS - process_policy Stack Leak Through Uninitialized Field

macOS - processpolicy Stack Leak Through Uninitialized Field / The syscall processpolicyscope=PROCPOLICYSCOPEPROCESS, action=PROCPOLICYACTIONGET, policy=PROCPOLICYRESOURCEUSAGE, policysubtype=PROCPOLICYRUSAGECPU, attrp=, targetpid=0, targetthreadid= causes 4 bytes of uninitialized kernel stack...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2017/12/15 12:0 a.m.117 views

iOS/MacOS kernel double free due to IOSurfaceRootUserClient not respecting MIG ownership rules(CVE-2017-13861)

I have previously detailed the lifetime management paradigms in MIG in the writeups for: CVE-2016-7612 https://bugs.chromium.org/p/project-zero/issues/detail?id=926 and CVE-2016-7633 https://bugs.chromium.org/p/project-zero/issues/detail?id=954 If a MIG method returns KERNSUCCESS it means that th...

9.3CVSS1.4AI score0.14888EPSS
Exploits11
0day.today
0day.today
added 2017/12/12 12:0 a.m.63 views

macOS necp_get_socket_attributes so_pcb Type Confusion Exploit

Exploit for macOS platform in category dos / poc MacOS sopcb type confusion in necpgetsocketattributes CVE-2017-13855 When setsockopt is called on any socket with level SOLSOCKET and optname SONECPATTRIBUTES, necpgetsocketattributes is invoked. necpgetsocketattributes unconditionally calls...

4.3CVSS6.8AI score0.04778EPSS
Exploits3
0day.today
0day.today
added 2017/12/09 12:0 a.m.44 views

Apple macOS 10.13.1 High Sierra - Insecure Cron System Local Privilege Escalation Vulnerability

Apple macOS version 10.13.1 High Sierra suffers from a cron related local privilege escalation vulnerability that allows you to gain root privileges. Recently I was working on an security issue in some other software that has yet to be disclosed which created a rather interesting condition. As a...

1.7AI score
Exploits0
Packet Storm
Packet Storm
added 2017/12/07 12:0 a.m.49 views

Apple macOS 10.13.1 High Sierra Cron Privilege Escalation

Recently I was working on an security issue in some other software that has yet to be disclosed which created a rather interesting condition. As a non-root user I was able to write to any file on the system that was not SIP-protected but the resulting file would not be root-owned, even if it...

1.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/12/06 12:0 a.m.37 views

Apple macOS 10.13.1 (High Sierra) - Insecure Cron System Local Privilege Escalation

Recently I was working on an security issue in some other software that has yet to be disclosed which created a rather interesting condition. As a non-root user I was able to write to any file on the system that was not SIP-protected but the resulting file would not be root-owned, even if it...

7.4AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2017/06/16 1:0 p.m.21 views

This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

6.7AI score
Exploits0
OSV
OSV
added 2017/05/22 5:29 a.m.2 views

CVE-2017-2535

An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "Security" component. It allows attackers to conduct sandbox-escape attacks or cause a denial of service resource consumption via a crafted app...

7.8CVSS5.8AI score0.00825EPSS
Exploits0References2
exploitpack
exploitpack
added 2016/12/22 12:0 a.m.35 views

Apple macOS 10.12.2 iOS 10.2 - _kernelrpc_mach_port_insert_right_trap Kernel Reference Count Leak Use-After-Free

Apple macOS 10.12.2 iOS 10.2 - kernelrpcmachportinsertrighttrap Kernel Reference Count Leak Use-After-Free / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=941 Proofs of Concept: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/40956.zip The...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2015/01/10 12:0 a.m.25 views

Apple Mac OSX 10.9.x - sysmond XPC Privilege Escalation

Apple Mac OSX 10.9.x - sysmond XPC Privilege Escalation / Source: https://code.google.com/p/google-security-research/issues/detail?id=121 / / tested on OS X 10.9.5 - uses some hard-coded offsets which will have to be fixed-up for other versions! this poc uses liblorgnette to resolve some private...

0.5AI score
Exploits0
NVD
NVD
added 2001/11/21 5:0 a.m.13 views

CVE-2001-0921

Netscape 4.79 and earlier for MacOS allows an attacker with access to the browser to obtain passwords from form fields by printing the document into which the password has been typed, which is printed in cleartext...

2.1CVSS6.6AI score0.00614EPSS
Exploits0References4
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.28 views

CVE-1999-1076

Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into th...

6.5AI score0.00451EPSS
Exploits1References2
securityvulns
securityvulns
added 2001/06/29 12:0 a.m.24 views

MacOS Personal Wed Sharing DoS

Hello bugtraq readers and Apple Inc. The problem this time is that when File Sharing is set to check PWS logins, on a about 300char password the system freezes. This problem could be bigger, cause Macintosh File sharing passwords cannot be longer than 8 chars and many apps support File Sharing to...

1AI score
Exploits0
securityvulns
securityvulns
added 2001/06/13 12:0 a.m.44 views

Проблемы с защитой директорий в Apache под MacOS (case insensitive filesystem)

При использовании файловой системы с наименованием файлов не чуствительным к реестру можно обойти защиту каталогов...

0.9AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 1999/07/29 12:0 a.m.26 views

Power On Software On Guard for MacOS 3.2 - Emergency Password

Power On Software On Guard for MacOS 3.2 - Emergency Password source: https://www.securityfocus.com/bid/553/info On Guard, a security program for MacOS, includes an emergency password feature in the event that the administrative password is lost or forgotten. If the user name 'emergency' is...

0.3AI score
Exploits0
exploitpack
exploitpack
added 1999/07/29 12:0 a.m.20 views

Ogopogo Autothenticate 1.1.5 - Weak Password Encryption

Ogopogo Autothenticate 1.1.5 - Weak Password Encryption source: https://www.securityfocus.com/bid/552/info Autothenticate is an extension for MacOS that remembers usernames and passwords from visited websites, and atomatically enters them when the site is visited again. It can be configured to...

7.4AI score
Exploits0
Rows per page
Query Builder