PT-2016-6096 · Apple · Os X
Publicado
2016-09-25
·
Atualizado
2017-07-30
·
CVE-2016-4710
CVSS v3.1
7.8
Alta
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Apple OS X versions prior to 10.12
Description
The issue allows local users to obtain root access via vectors that leverage type confusion. It is a different vulnerability from others and can be exploited to escalate privileges.
Recommendations
For versions prior to 10.12, update to version 10.12 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive system resources to minimize the risk of exploitation.
Correção
Incorrect Type Conversion or Cast
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Os X