2016 VULNERABILITY DATABASE

 

 

 

CVE-2016-1802

Summary: CCCrypt in CommonCrypto in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 mishandles return values during key-length calculations, which allows attackers to obtain sensitive information via a crafted app.

Published: 5/20/2016 6:59:14 AM

 

CVE-2016-1801

Summary: The CFNetwork Proxies subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 mishandles URLs in http and https requests, which allows remote attackers to obtain sensitive information via unspecified vectors.

Published: 5/20/2016 6:59:13 AM

 

CVE-2016-1800

Summary: Captive Network Assistant in Apple OS X before 10.11.5 mishandles a custom URL scheme, which allows user-assisted remote attackers to execute arbitrary code via unspecified vectors.

Published: 5/20/2016 6:59:12 AM

 

CVE-2016-1799

Summary: Audio in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Published: 5/20/2016 6:59:11 AM

 

CVE-2016-1798

Summary: Audio in Apple OS X before 10.11.5 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.

Published: 5/20/2016 6:59:10 AM

 

CVE-2016-1797

Summary: Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to bypass intended FontValidator sandbox-policy restrictions and execute arbitrary code in a privileged context via a crafted app.

Published: 5/20/2016 6:59:09 AM

 

CVE-2016-1796

Summary: Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds memory access) via a crafted app.

Published: 5/20/2016 6:59:08 AM

 

CVE-2016-1795

Summary: AppleGraphicsPowerManagement in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Published: 5/20/2016 6:59:07 AM

 

CVE-2016-1794

Summary: AppleGraphicsControl in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app, a different vulnerability than CVE-2016-1793.

Published: 5/20/2016 6:59:06 AM

 

CVE-2016-1793

Summary: AppleGraphicsControl in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app, a different vulnerability than CVE-2016-1794.

Published: 5/20/2016 6:59:05 AM

 

CVE-2016-1792

Summary: The AMD subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Published: 5/20/2016 6:59:04 AM

 

CVE-2016-1791

Summary: The AMD subsystem in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.

Published: 5/20/2016 6:59:03 AM

 

CVE-2016-1790

Summary: Buffer overflow in the Accessibility component in Apple iOS before 9.3.2 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.

Published: 5/20/2016 6:59:02 AM

 

CVE-2016-1742

Summary: Untrusted search path vulnerability in the installer in Apple iTunes before 12.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Published: 5/20/2016 6:59:01 AM

 

CVE-2015-8865

Summary: The file_check_mem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, which allows context-dependent attackers to cause a denial of service (buffer overflow and application crash) or possibly execute arbitrary code via a crafted magic file.

Published: 5/20/2016 6:59:00 AM

 

CVE-2016-2208

Summary: The kernel component in Symantec Anti-Virus Engine (AVE) 20151.1 before 20151.1.1.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation and system crash) via a malformed PE header file.

Published: 5/19/2016 6:59:00 AM

 

CVSS Severity: v3 - 9.1 CRITICAL      v2 - 9.4 HIGH

 

CVE-2016-4480

Summary: The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and earlier does not properly handle the Page Size (PS) page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory.

Published: 5/18/2016 10:59:05 AM

 

CVSS Severity: v3 - 8.4 HIGH      v2 - 7.2 HIGH

 

CVE-2016-2077

Summary: VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vectors.

Published: 5/18/2016 10:59:04 AM

 

CVSS Severity: v3 - 9.8 CRITICAL      v2 - 10.0 HIGH

 

CVE-2016-0731

Summary: The File Browser View in Apache Ambari before 2.2.1 allows remote authenticated administrators to read arbitrary files via a file: URL in the WebHDFS URL configuration.

Published: 5/18/2016 10:59:03 AM

 

CVSS Severity: v3 - 4.9 MEDIUM      v2 - 4.0 MEDIUM

 

CVE-2016-0707

Summary: The agent in Apache Ambari before 2.1.2 uses weak permissions for the (1) /var/lib/ambari-agent/data and (2) /var/lib/ambari-agent/keys directories, which allows local users to obtain sensitive information by reading files in the directories.

Published: 5/18/2016 10:59:01 AM

 

CVSS Severity: v3 - 3.3 LOW      v2 - 2.1 LOW

 

 

<<< New  Older >>>