Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-4302

Malware in sbrugna...

7.8CVSS7.8AI score0.00364EPSS
Exploits0References11
Exploit DB
Exploit DB
added 2019/01/31 12:0 a.m.54 views

macOS XNU - Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File

/ XNU has various interfaces that permit creating copy-on-write copies of data between processes, including out-of-line message descriptors in mach messages. It is important that the copied memory is protected against later modifications by the source process; otherwise, the source process might ...

7.4AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2018/11/05 12:0 a.m.34 views

(Pwn2Own) Apple macOS task_set_special_port Port Overwrite Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of Mach...

7.2CVSS3.1AI score0.1392EPSS
Exploits5References1
OSV
OSV
added 2017/02/20 8:59 a.m.0 views

CVE-2016-7661

An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. The issue involves the "Power Management" component. It allows local users to gain privileges via unspecified vectors related to Mach port name references...

7.8CVSS5.8AI score0.01108EPSS
Exploits4References6
exploitpack
exploitpack
added 2016/12/22 12:0 a.m.20 views

Apple macOS 10.12.2 iOS 10.2 Kernel - ipc_port_t Reference Count Leak Due to Incorrect externalMethod Overrides Use-After-Free

Apple macOS 10.12.2 iOS 10.2 Kernel - ipcportt Reference Count Leak Due to Incorrect externalMethod Overrides Use-After-Free Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=926 mach ports are really struct ipcportt's in the kernel; this is a reference-counted object, ipreference...

0.8AI score
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2016/10/25 12:0 a.m.27 views

task_t considered harmful

Posted by Ian Beer, Project Zero This post discusses a design issue at the core of the XNU kernel which powers iOS and MacOS. Apple have shipped two iterations of mitigations followed yesterday by a large refactor in MacOS 10.12.1/iOS 10.1. We’ll look at the bugs, how they can be exploited to...

9.3CVSS6.5AI score0.12671EPSS
Exploits9
NVD
NVD
added 2014/09/18 10:55 a.m.12 views

CVE-2014-4375

Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service device crash via vectors related to Mach ports...

7.8CVSS7AI score0.00364EPSS
Exploits0References10
Prion
Prion
added 2014/09/18 10:55 a.m.18 views

Double free

Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service device crash via vectors related to Mach ports...

7.2CVSS6.5AI score0.00364EPSS
Exploits0References10Affected Software3
CVE
CVE
added 2014/09/18 10:0 a.m.59 views

CVE-2014-4375

CVE-2014-4375 is a local privilege-escalation and denial-of-service risk tied to a double-free in Mach ports within Apple iOS pre-8 and Apple TV pre-7. Public docs tie the issue to kernel/Mach ports handling, with confirmed remediation in iOS 8 and Apple TV 7 security updates. Affected components...

7.8CVSS7.3AI score0.00364EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2014/09/18 10:0 a.m.21 views

CVE-2014-4375

Double free vulnerability in Apple iOS before 8 and Apple TV before 7 allows local users to gain privileges or cause a denial of service device crash via vectors related to Mach ports...

7.1AI score0.00364EPSS
Exploits0References10
securityvulns
securityvulns
added 2007/11/17 12:0 a.m.50 views

Apple Mac OS X multiple security vulnerabilities

Mach ports privilege escalation. Multiple Appletalk protocol handling vulnerabilities. ldt privilege escalation...

7.2CVSS1.9AI score0.00671EPSS
Exploits2References6Affected Software1
securityvulns
securityvulns
added 2007/11/15 12:0 a.m.64 views

[Full-disclosure] iDefense Security Advisory 11.14.07: Apple Mac OS X Mach Port Inheritance Privilege Escalation Vulnerability

iDefense Security Advisory 11.14.07 http://labs.idefense.com/intelligence/vulnerabilities/ Nov 14, 2007 I. BACKGROUND Mach ports are used to provide inter-process communication IPC facilities on Mac OS X. More information can be found on the vendor's site at the following URL...

7.2CVSS0.4AI score0.00451EPSS
Exploits1
Rows per page
Query Builder