CVE-2016-4596
- EPSS 0.98%
- Veröffentlicht 22.07.2016 02:59:19
- Zuletzt bearbeitet 12.04.2025 10:46:40
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4597, CVE-2016-4600, and CVE-2016-4...
CVE-2016-4595
- EPSS 0.07%
- Veröffentlicht 22.07.2016 02:59:18
- Zuletzt bearbeitet 12.04.2025 10:46:40
Safari Login AutoFill in Apple OS X before 10.11.6 allows physically proximate attackers to discover passwords by reading the screen during the login procedure.
CVE-2016-4594
- EPSS 0.21%
- Veröffentlicht 22.07.2016 02:59:17
- Zuletzt bearbeitet 12.04.2025 10:46:40
The Sandbox Profiles component in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows attackers to access the process list via a crafted app that makes an API call.
CVE-2016-4582
- EPSS 0.12%
- Veröffentlicht 22.07.2016 02:59:04
- Zuletzt bearbeitet 12.04.2025 10:46:40
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-...
CVE-2016-1865
- EPSS 0.06%
- Veröffentlicht 22.07.2016 02:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors.
CVE-2016-1863
- EPSS 0.18%
- Veröffentlicht 22.07.2016 02:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-...
CVE-2014-9862
- EPSS 8.09%
- Veröffentlicht 22.07.2016 02:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a crafted patch file.
CVE-2015-7988
- EPSS 1.93%
- Veröffentlicht 26.06.2016 01:59:01
- Zuletzt bearbeitet 12.04.2025 10:46:40
The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.
CVE-2015-7987
- EPSS 3.09%
- Veröffentlicht 26.06.2016 01:59:00
- Zuletzt bearbeitet 12.04.2025 10:46:40
Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3Resour...
CVE-2016-1862
- EPSS 0.17%
- Veröffentlicht 19.06.2016 20:59:09
- Zuletzt bearbeitet 12.04.2025 10:46:40
Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860.