CVE-2016-4669
38Vexday Risk Score
Corrija em breve. Ela tem exploit funcional público.
ssvc Attendepss 3.7%
da publicação à arma0 dias
Publicada no NVD20 de fev.
1ª PoC31 de out.
metasploit25 de ago.
probabilidade de exploração
3.7%top 11% das CVEs
exploração observada
nãonenhuma fonte reporta
4 exploit(s) público(s)
An issue was discovered in certain Apple products. iOS before 10.1 is affected. macOS before 10.12.1 is affected. tvOS before 10.0.1 is affected. watchOS before 3.1 is affected. The issue involves the "Kernel" component. It allows local users to execute arbitrary code in a privileged context or cause a denial of service (MIG code mishandling and system crash) via unspecified vectors.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 4
githubgithub.com/i-o-s/CVE-2016-4669★ 0cve_referencepacketstormsecurity.com/files/158874/Safari-Webkit-For-iOS-7.1.2-JIT-Optimization-Bug.htmlnão verificadocve_referencewww.exploit-db.com/exploits/40654/não verificadoexploitdbwww.exploit-db.com/exploits/40654não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Referências
http://packetstormsecurity.com/files/158874/Safari-Webkit-For-iOS-7.1.2-JIT-Optimization-Bug.htmlhttps://support.apple.com/HT207269https://support.apple.com/HT207270https://support.apple.com/HT207271https://support.apple.com/HT207275https://www.exploit-db.com/exploits/40654/http://www.securityfocus.com/bid/93849http://www.securitytracker.com/id/1037086