Microsoft Windows Graphics Component Local Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in Microsoft Windows due to a failure of the Windows Graphics component to properly handle memory objects. An attacker can exploit the vulnerability to run...

Apple OS X AppleSMC smcHandleYPCEvent Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within AppleSMC's...

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the IOAcceleratorFamily component in iOS and Mac OS X operating systems is related to pointer dereferencing errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged contexts or trigger a service failure dereferencing the null...

Tomcat/JbossWeb: security manager bypass via EL expressions

It was found that the expression language resolver evaluated expressions within a privileged code section. A malicious web application could use this flaw to bypass security manager protections...

CVE-2016-4778

The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...

CVE-2016-4724

IOAcceleratorFamily in Apple iOS before 10 and OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service NULL pointer dereference via a crafted app...

CVE-2016-4698

AppleMobileFileIntegrity in Apple iOS before 10 and OS X before 10.12 mishandles process entitlement and Team ID values in the task port inheritance policy, which allows attackers to execute arbitrary code in a privileged context via a crafted app...

Apple OS X IOThunderboltFamily Uninitialized Memory Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple OS X. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the IOThunderboltFamily...

The vulnerability of the Mac OS X operating system allows a hacker to execute arbitrary code in a privileged context.

The vulnerability of the Mac OS X operating system’s login window exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in a privileged context using a specially created application...

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the Intel operating system’s graphical driver in Mac OS X is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged contexts or cause a service failure memory corruption through a specially...

CVE-2016-4654

IOMobileFrameBuffer in Apple iOS before 9.3.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...

(0Day) ABB DataManagerPro File Permissions Privilege Escalation Vulnerability

This vulnerability allows attackers to escalate their privilege to system administrator on vulnerable installations of ABB DataManagerPro. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

VulnCheck KEV: CVE-2016-4656

A memory corruption vulnerability in Apple iOS kernel allows attackers to execute code in a privileged context or cause a denial-of-service DoS via a crafted application...

CVE-2016-4641

CVE-2016-4641 affects the Login Window in Apple OS X prior to 10.11.6, enabling a crafted app leveraging a type confusion flaw to run arbitrary code in a privileged context or access sensitive user data. Apple’s security content associates this with the Login Window issue and notes remediation in...

The vulnerability of the Mac OS X operating system allows a perpetrator to execute arbitrary code in privileged context or cause a service failure.

The vulnerability of the NVIDIA Graphics Drivers subsystem for the Mac OS X operating system is caused by buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or trigger a service failure memory corruption through a specially...

The vulnerabilities in Acrobat software allow a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in Acrobat for Windows allows attackers to bypass the sandbox protection mechanism and execute native code in a privileged context...

CVE-2016-1861

The NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app, a different vulnerability than CVE-2016-1846...

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the kernel in iOS and Mac OS X operating systems arises due to buffer overflows. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption through a specially created application...

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the IOFireWireFamily component in the Mac OS X operating system is caused by buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or trigger a service failure memory corruption through a specially created...

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the IOHIDFamily component in the Mac OS X operating system arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption through a specially created applicati...