» 2017 » 2월

CVE-2017-2357

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2017-2357

An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "IOAudioFamily" component. It allows attackers to obtain sensitive kernel memory-layout information via a crafted app.

Source: CVE-2017-2357

CVE-2016-7666

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2016-7666

An issue was discovered in certain Apple products. Transporter before 1.9.2 is affected. The issue involves the "iTMSTransporter" component, which allows attackers to obtain sensitive information via a crafted EPUB.

Source: CVE-2016-7666

CVE-2017-2358

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2017-2358

An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "Graphics Drivers" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Source: CVE-2017-2358

CVE-2016-7714

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2016-7714

An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "IOKit" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors.

Source: CVE-2016-7714

CVE-2017-2359

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2017-2359

An issue was discovered in certain Apple products. Safari before 10.0.3 is affected. The issue involves the "Safari" component, which allows remote attackers to spoof the address bar via a crafted web site.

Source: CVE-2017-2359

CVE-2016-7759

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2016-7759

An issue was discovered in certain Apple products. iOS before 10 is affected. The issue involves the "Springboard" component, which allows physically proximate attackers to obtain sensitive information by viewing application snapshots in the Task Switcher.

Source: CVE-2016-7759

CVE-2017-2360

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2017-2360

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. macOS before 10.12.3 is affected. tvOS before 10.1.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (use-after-free) via a crafted app.

Source: CVE-2017-2360

CVE-2016-7762

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2016-7762

An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "WebKit" component, which allows XSS attacks against Safari.

Source: CVE-2016-7762

CVE-2016-7659

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2016-7659

An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Audio" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted file.

Source: CVE-2016-7659

CVE-2017-2350

Posted on 2017년 2월 20일2017년 2월 20일 by admin

CVE-2017-2350

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

Source: CVE-2017-2350