1335 matches found
Microsoft Bulletin: detection and protection CVE-2017-0005 mention the right vulnerability-vulnerability warning-the black bar safety net
! 2017 3 October 14, Microsoft released a security Bulletin MS17-013, designed to address the CVE-2017-0005 mention the right vulnerability, Qualys vulnerability Labs Director, Amol Sarwate, said:“CVE-2017-0005 is a zero-day vulnerability issue currently being the abuse, the use of Silverlight as...
Mozilla Firefox < 17.0.1 - Flash Privileged Code Injection Exploit
Exploit for multiple platform in category local exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule HttpClients::FF, :uaminver = "17.0", :uamaxver = "17.0.1", :javascript ...
Multiple VMware Workstation Product DLL Load Remote Code Execution Vulnerability
VMware Workstation is a virtual machine software product from VMware. A DLL loading remote code execution vulnerability exists in multiple VMware Workstation products. An attacker can exploit this vulnerability to execute arbitrary code with elevated privileges, and a failed attack could result i...
The vulnerabilities of operating systems Mac OS X and iOS allow attackers to execute arbitrary code in a privileged context.
The vulnerability of the Kernel component in Mac OS X and iOS operating systems is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in a privileged context using a specially created application...
The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.
The vulnerability of the Intel Graphics Driver component in the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or cause a service failure...
The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.
The vulnerability of Disk Images components in iOS and Mac OS X operating systems arises from the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or trigger a service failure memory...
The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.
The vulnerability of the Bluetooth component in the Mac OS X operating system is related to incorrect type conversion. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or cause a service failure using a specially created application...
The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.
The vulnerability of the Kernel component in iOS and Mac OS X operating systems arises from the execution of an operation outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in a privileged context, or to cause a service failure memory...
The vulnerabilities in operating systems such as Mac OS X and iOS allow attackers to trigger service failures or execute arbitrary code in privileged contexts.
The vulnerability of the Kernel component in Mac OS X and iOS operating systems exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged contexts or cause service failures using unspecified vectors...
The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.
The vulnerability of the Thunderbolt component in the Mac OS X operating system is related to pointer assignment errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or trigger a service failure pointer zero assignment through a specially...
CVE-2017-2358
An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "Graphics Drivers" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2016-7629
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "kext tools" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2016-7612
An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory...
CVE-2016-7596
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2016-7602
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2016-7582
An issue was discovered in certain Apple products. macOS before 10.12 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2016-4780
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Thunderbolt" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service NULL pointer dereference via a crafted app...
CVE-2016-4662
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "AppleGraphicsControl" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2016-5201
A leak of privateClass in the extensions API in Google Chrome prior to 54.0.2840.100 for Linux, and 54.0.2840.99 for Windows, and 54.0.2840.98 for Mac allowed a remote attacker to access privileged JavaScript code via a crafted HTML page...
Apple OS X AppleGraphicsPowerManagement Null Pointer Dereference Privilege Escalation Vulnerability
This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...