Lucene search
+L

17 matches found

exploitpack
exploitpack
added 2015/04/09 12:0 a.m.67 views

Apple Mac OSX 10.7.510.8.210.9.510.10.2 - Rootpipe Local Privilege Escalation

Apple Mac OSX 10.7.510.8.210.9.510.10.2 - Rootpipe Local Privilege Escalation PoC exploit code for rootpipe CVE-2015-1130 Created by Emil Kvarnhammar, TrueSec Tested on OS X 10.7.5, 10.8.2, 10.9.5 and 10.10.2 import os import sys import platform import re import ctypes import objc import sys from...

7.2CVSS0.9AI score0.09887EPSS
Exploits16
Exploit DB
Exploit DB
added 2015/04/09 12:0 a.m.67 views

Apple Mac OSX < 10.7.5/10.8.2/10.9.5/10.10.2 - 'Rootpipe' Local Privilege Escalation

PoC exploit code for rootpipe CVE-2015-1130 Created by Emil Kvarnhammar, TrueSec Tested on OS X 10.7.5, 10.8.2, 10.9.5 and 10.10.2 import os import sys import platform import re import ctypes import objc import sys from Cocoa import NSData, NSMutableDictionary, NSFilePosixPermissions from...

7.8CVSS7.5AI score0.09887EPSS
Exploits16
OpenVAS
OpenVAS
added 2014/09/22 12:0 a.m.63 views

Apple Mac OS X Multiple Vulnerabilities -04 (Sep 2014)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.35635EPSS
Exploits14References12
Tenable Nessus
Tenable Nessus
added 2013/04/17 12:0 a.m.246 views

Mac OS X : Java for OS X 2013-003

The remote Mac OS X 10.7 or 10.8 host has a Java runtime that is missing the Java for OS X 2013-003 update, which updates the Java version to 1.6.045. It is, therefore, affected by multiple security vulnerabilities, the most serious of which may allow an untrusted Java applet to execute arbitrary...

10CVSS7.5AI score0.2258EPSS
Exploits6References32
Tenable Nessus
Tenable Nessus
added 2012/09/21 12:0 a.m.33 views

Mac OS X 10.7 < 10.7.5 Multiple Vulnerabilities

Binary data 6583.prm...

10CVSS7.3AI score0.99998EPSS
Exploits80References32
NVD
NVD
added 2012/05/11 3:49 a.m.19 views

CVE-2012-0656

Race condition in LoginUIFramework in Apple Mac OS X 10.7.x before 10.7.4, when the Guest account is enabled, allows physically proximate attackers to login to arbitrary accounts by entering the account name and no password...

6.9CVSS6.2AI score0.00267EPSS
Exploits0References4
NVD
NVD
added 2012/02/02 6:55 p.m.17 views

CVE-2011-3463

WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to 1 the server or 2 a bound directory...

7.2CVSS6AI score0.00377EPSS
Exploits1References2
NVD
NVD
added 2012/02/02 6:55 p.m.21 views

CVE-2011-3450

CoreUI in Apple Mac OS X 10.7.x before 10.7.3 does not properly restrict the allocation of stack memory, which allows remote attackers to execute arbitrary code or cause a denial of service memory consumption and application crash via a long URL...

6.8CVSS7.5AI score0.02452EPSS
Exploits1References2
NVD
NVD
added 2012/02/02 6:55 p.m.22 views

CVE-2011-3447

CFNetwork in Apple Mac OS X 10.7.x before 10.7.3 does not properly construct request headers during parsing of URLs, which allows remote attackers to obtain sensitive information via a malformed URL...

4.3CVSS5.4AI score0.01436EPSS
Exploits0References2
Prion
Prion
added 2012/02/02 6:55 p.m.20 views

Design/Logic Flaw

CFNetwork in Apple Mac OS X 10.7.x before 10.7.3 does not properly construct request headers during parsing of URLs, which allows remote attackers to obtain sensitive information via a malformed URL...

4.3CVSS6AI score0.01436EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2012/02/02 6:55 p.m.31 views

Design/Logic Flaw

WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to 1 the server or 2 a bound directory...

7.2CVSS6.5AI score0.00377EPSS
Exploits1References2Affected Software2
Cvelist
Cvelist
added 2012/02/02 6:0 p.m.25 views

CVE-2011-3463

WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to 1 the server or 2 a bound directory...

6.1AI score0.00377EPSS
Exploits1References2
NVD
NVD
added 2011/10/14 10:55 a.m.23 views

CVE-2011-3437

Integer signedness error in Apple Type Services ATS in Apple Mac OS X 10.7 before 10.7.2 allows remote attackers to execute arbitrary code via a crafted embedded Type 1 font in a document...

6.8CVSS8.4AI score0.02987EPSS
Exploits0References5
NVD
NVD
added 2011/10/14 10:55 a.m.16 views

CVE-2011-3436

Open Directory in Apple Mac OS X 10.7 before 10.7.2 does not require a user to provide the current password before changing this password, which allows remote attackers to bypass intended password-change restrictions by leveraging an unattended workstation...

6.5CVSS8.1AI score0.01721EPSS
Exploits0References5
Prion
Prion
added 2011/10/14 10:55 a.m.19 views

Integer overflow

Integer signedness error in Apple Type Services ATS in Apple Mac OS X 10.7 before 10.7.2 allows remote attackers to execute arbitrary code via a crafted embedded Type 1 font in a document...

6.8CVSS7.7AI score0.02987EPSS
Exploits0References5Affected Software2
Saint
Saint
added 2011/07/14 12:0 a.m.24 views

Get OS X 10.7 Hashes

Added: 07/14/2011 Background This tool attempts to retrieve the SHA 512 password hashes stored by OS X Lion 10.7.x Acounts are enumerated using dscl . list /Users/ and password hashes are eunmerated using dscl . read /Users/ Limitations A connection to the target is required to run this tool. The...

0.6AI score
Exploits0
Saint
Saint
added 2011/07/14 12:0 a.m.22 views

Get OS X 10.7 Hashes

Added: 07/14/2011 Background This tool attempts to retrieve the SHA 512 password hashes stored by OS X Lion 10.7.x Acounts are enumerated using dscl . list /Users/ and password hashes are eunmerated using dscl . read /Users/ Limitations A connection to the target is required to run this tool. The...

0.6AI score
Exploits0
Rows per page
Query Builder