EUVD-2016-8592

Malware in sbrugna...

The vulnerability of the Mac OS X operating system, which allows a hacker to execute arbitrary code

The vulnerability of the xar component in the Mac OS X operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, using a specially crafted archive that triggers the use of uninitialized memory cel...

Memory corruption

An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "xar" component, which allows remote attackers to execute arbitrary code via a crafted archive that triggers use of uninitialized memory locations...

CVE-2016-7742

CVE-2016-7742 affects macOS prior to 10.12.2 via the xar component, where a crafted archive can trigger uninitialized memory and lead to arbitrary code execution. The issue is documented for Apple macOS in the 10.12.2/El Capitan/Yosemite security content, with remediation by updating to macOS 10....