2016 VULNERABILITY DATABASE
CVE-2016-1802
Summary: CCCrypt in CommonCrypto in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 mishandles return values during key-length calculations, which allows attackers to obtain sensitive information via a crafted app.
Published: 5/20/2016 6:59:14 AM
CVE-2016-1801
Summary: The CFNetwork Proxies subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 mishandles URLs in http and https requests, which allows remote attackers to obtain sensitive information via unspecified vectors.
Published: 5/20/2016 6:59:13 AM
CVE-2016-1800
Summary: Captive Network Assistant in Apple OS X before 10.11.5 mishandles a custom URL scheme, which allows user-assisted remote attackers to execute arbitrary code via unspecified vectors.
Published: 5/20/2016 6:59:12 AM
CVE-2016-1799
Summary: Audio in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Published: 5/20/2016 6:59:11 AM
CVE-2016-1798
Summary: Audio in Apple OS X before 10.11.5 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.
Published: 5/20/2016 6:59:10 AM
CVE-2016-1797
Summary: Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to bypass intended FontValidator sandbox-policy restrictions and execute arbitrary code in a privileged context via a crafted app.
Published: 5/20/2016 6:59:09 AM
CVE-2016-1796
Summary: Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds memory access) via a crafted app.
Published: 5/20/2016 6:59:08 AM
CVE-2016-1795
Summary: AppleGraphicsPowerManagement in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Published: 5/20/2016 6:59:07 AM
CVE-2016-1794
Summary: AppleGraphicsControl in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app, a different vulnerability than CVE-2016-1793.
Published: 5/20/2016 6:59:06 AM
CVE-2016-1793
Summary: AppleGraphicsControl in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app, a different vulnerability than CVE-2016-1794.
Published: 5/20/2016 6:59:05 AM
CVE-2016-1792
Summary: The AMD subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Published: 5/20/2016 6:59:04 AM
CVE-2016-1791
Summary: The AMD subsystem in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
Published: 5/20/2016 6:59:03 AM
CVE-2016-1790
Summary: Buffer overflow in the Accessibility component in Apple iOS before 9.3.2 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
Published: 5/20/2016 6:59:02 AM
CVE-2016-1742
Summary: Untrusted search path vulnerability in the installer in Apple iTunes before 12.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Published: 5/20/2016 6:59:01 AM
CVE-2015-8865
Summary: The file_check_mem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, which allows context-dependent attackers to cause a denial of service (buffer overflow and application crash) or possibly execute arbitrary code via a crafted magic file.
Published: 5/20/2016 6:59:00 AM
CVE-2016-2208
Summary: The kernel component in Symantec Anti-Virus Engine (AVE) 20151.1 before 20151.1.1.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation and system crash) via a malformed PE header file.
Published: 5/19/2016 6:59:00 AM
CVSS Severity: v3 - 9.1 CRITICAL v2 - 9.4 HIGH
CVE-2016-4480
Summary: The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and earlier does not properly handle the Page Size (PS) page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory.
Published: 5/18/2016 10:59:05 AM
CVSS Severity: v3 - 8.4 HIGH v2 - 7.2 HIGH
CVE-2016-2077
Summary: VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vectors.
Published: 5/18/2016 10:59:04 AM
CVSS Severity: v3 - 9.8 CRITICAL v2 - 10.0 HIGH
CVE-2016-0731
Summary: The File Browser View in Apache Ambari before 2.2.1 allows remote authenticated administrators to read arbitrary files via a file: URL in the WebHDFS URL configuration.
Published: 5/18/2016 10:59:03 AM
CVSS Severity: v3 - 4.9 MEDIUM v2 - 4.0 MEDIUM
CVE-2016-0707
Summary: The agent in Apache Ambari before 2.1.2 uses weak permissions for the (1) /var/lib/ambari-agent/data and (2) /var/lib/ambari-agent/keys directories, which allows local users to obtain sensitive information by reading files in the directories.
Published: 5/18/2016 10:59:01 AM
CVSS Severity: v3 - 3.3 LOW v2 - 2.1 LOW