CVE-2016-1733

Name of the Vulnerable Software and Affected Versions Apple OS X versions prior to 10.11.4

Description The issue is caused by a buffer overflow in the AppleRAID component, allowing attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. This can be exploited by a remote attacker using a specially crafted application.

Recommendations For Apple OS X versions prior to 10.11.4, update to version 10.11.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of the AppleRAID component until a patch is available.