Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable9758.PRM
HistoryNov 08, 2016 - 12:00 a.m.

Mac OS X 10.x < 10.12.1 Multiple Vulnerabilities

2016-11-0800:00:00
Tenable
www.tenable.com
16

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.013

Percentile

86.0%

JSON

The remote host is running a version of Mac OS X version 10.x prior to 10.12.1, and is affected by multiple vulnerabilities in the following components :

  • AppleMobileFileIntegrity (CVE-2016-7584)
  • AppleGraphicsControl (CVE-2016-4662)
  • AppleSMC (CVE-2016-4678)
  • ATS (CVE-2016-4667, CVE-2016-4674)
  • CFNetwork Proxies (CVE-2016-7579)
  • CoreGraphics (CVE-2016-4673)
  • Core Image (CVE-2016-4681)
  • FaceTime (CVE-2016-7577)
  • FontParser (CVE-2016-4660, CVE-2016-4688)
  • IDS - Connectivity (CVE-2016-4721)
  • ImageIO (CVE-2016-4671, CVE-2016-4682, CVE-2016-4683)
  • Kernel (CVE-2016-4669, CVE-2016-7613)
  • libarchive (CVE-2016-4679)
  • libxpc (CVE-2016-4675)
  • ntfs (CVE-2016-4661)
  • NVIDIA Graphics Drivers (CVE-2016-4663)
  • Security (CVE-2016-4670)
  • Thunderbolt (CVE-2016-4780)
Binary data 9758.prm

References

Related

apple 14
openvas 5
nessus 10
threatpost 1
cve 23
nvd 23
cvelist 23
prion 23
exploitdb 1
zdt 2
zdi 1
metasploit 1
packetstorm 1
thn 1
cert 1
apple
apple
About the security content of macOS Sierra 10.12.1, Security Update 2016-002 El Capitan, and Security Update 2016-006 Yosemite
2016-10-24 00:00:00
About the security content of macOS Sierra 10.12.1, Security Update 2016-002 El Capitan, and Security Update 2016-006 Yosemite - Apple Support
2017-03-31 10:56:28
About the security content of watchOS 3.1
2016-10-24 00:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-03 (Feb 2017)
2017-02-28 00:00:00
Apple Mac OS X Multiple Vulnerabilities-04 (Feb 2017)
2017-02-28 00:00:00
Apple Mac OS X Multiple Vulnerabilities-05 (Feb 2017)
2017-02-28 00:00:00
nessus
nessus
macOS 10.12.x < 10.12.1 Multiple Vulnerabilities
2016-10-25 00:00:00
Mac OS X 10.10.5 / 10.11.6 Multiple Vulnerabilities (Security Update 2016-002 / 2016-006)
2017-05-26 00:00:00
Apple iOS < 10.1 Multiple Vulnerabilities
2016-11-08 00:00:00
threatpost
threatpost
Apple Patches iOS Flaw Exploitable by Malicious JPEG
2016-10-25 12:47:34
cve
cve
CVE-2016-7579
2017-02-20 08:59:01
CVE-2016-4675
2017-02-20 08:59:00
CVE-2016-4673
2017-02-20 08:59:00
nvd
nvd
CVE-2016-4661
2017-02-20 08:59:00
CVE-2016-7584
2017-02-20 08:59:01
CVE-2016-7579
2017-02-20 08:59:01
cvelist
cvelist
CVE-2016-4673
2017-02-20 08:35:00
CVE-2016-7579
2017-02-20 08:35:00
CVE-2016-4678
2017-02-20 08:35:00
prion
prion
Null pointer dereference
2017-02-20 08:59:00
Code injection
2017-02-20 08:59:00
Authentication flaw
2017-02-20 08:59:00
exploitdb
exploitdb
Apple OS X/iOS - &#039;mach_ports_register&#039; Multiple Memory Safety s
2016-10-31 00:00:00
zdt
zdt
OS X / iOS - mach_ports_register Multiple Memory Safety Issues Exploit
2016-11-01 00:00:00
Safari Webkit For iOS 7.1.2 JIT Optimization Bug Exploit
2020-08-15 00:00:00
zdi
zdi
Apple OS X AppleSMC smcHandleYPCEvent Privilege Escalation Vulnerability
2016-11-02 00:00:00
metasploit
metasploit
Safari Webkit JIT Exploit for iOS 7.1.2
2020-07-27 07:05:31
packetstorm
packetstorm
Safari Webkit For iOS 7.1.2 JIT Optimization Bug
2020-08-14 00:00:00
thn
thn
Warning! Your iPhone Can Get Hacked Just by Opening a JPEG Image, PDF or Font File
2016-10-24 22:11:00
cert
cert
HTTP CONNECT and 407 Proxy Authentication Required messages are not integrity protected
2016-08-15 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.013

Percentile

86.0%

JSON
Related for 9758.PRM
apple14openvas5nessus10threatpost1cve23nvd23cvelist23prion23exploitdb1zdt2zdi1metasploit1packetstorm1thn1cert1