SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


Try our Premium Alert Service
 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service





Category:   OS (UNIX)  >   Apple macOS/OS X Vendors:   Apple
Apple macOS Multiple Flaws Let Remote Users Execute Arbitrary Code and Deny Service, Let Local Users Obtain Potentially Sensitive Information, and Applications Gain Elevated Privileges
SecurityTracker Alert ID:  1039710
SecurityTracker URL:  http://securitytracker.com/id/1039710
CVE Reference:   CVE-2017-13782, CVE-2017-13786, CVE-2017-13800, CVE-2017-13801, CVE-2017-13807, CVE-2017-13808, CVE-2017-13809, CVE-2017-13810, CVE-2017-13811, CVE-2017-13812, CVE-2017-13813, CVE-2017-13814, CVE-2017-13815, CVE-2017-13816, CVE-2017-13817, CVE-2017-13818, CVE-2017-13819, CVE-2017-13820, CVE-2017-13821, CVE-2017-13822, CVE-2017-13823, CVE-2017-13824, CVE-2017-13825, CVE-2017-13828, CVE-2017-13830, CVE-2017-13831, CVE-2017-13832, CVE-2017-13834, CVE-2017-13836, CVE-2017-13838, CVE-2017-13840, CVE-2017-13841, CVE-2017-13842, CVE-2017-13843, CVE-2017-13846, CVE-2017-7132   (Links to External Site)
Date:  Nov 1 2017
Impact:   Denial of service via network, Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via local system, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   Multiple vulnerabilities were reported in Apple macOS. A remote user can cause arbitrary code to be executed on the target user's system. A remote user can cause denial of service conditions on the target system. A local user can obtain potentially sensitive information. An application can obtain elevated privileges on the target system.

A remote user can trigger a flaw in the TLS 1.0 protocol in the 802.1X component [CVE-2017-13832]. The impact was not specified.

A physically local user with a connected Thunderbolt adapter can trigger a DMA access control flaw in the APFS component to recover unencrypted APFS filesystem data [CVE-2017-13786].

An application can trigger a memory corruption error in the APFS component to execute arbitrary code with system privileges [CVE-2017-13800].

A remote user can create specially crafted AppleScript that, when decompiled by the target user with osadecompile can trigger a input validation flaw in the AppleScript component to execute arbitrary code [CVE-2017-13809].

A remote user can create specially crafted AppleScript that, when decompiled by the target user with osadecompile can trigger a memory corruption error in the Open Scripting Architecture component to execute arbitrary code [CVE-2017-13824].

A remote user can create a specially crafted font that, when processed by the target user's system, will trigger a memory corruption error in the ATS component to obtain potentially sensitive information [CVE-2017-13820].

A remote user can trigger a memory handling error in the Audio component to execute arbitrary code [CVE-2017-13807].

An application can trigger a input validation flaw in the CFString component to read restricted memory [CVE-2017-13821].

A remote user can trigger a memory handling error in the CoreText component to execute arbitrary code [CVE-2017-13825].

A user can trigger a input validation flaw in the Dictionary Widget component to access files on the target user's system [CVE-2017-13801].

A remote can trigger a font rendering flaw in the Fonts component to spoof user interface elements [CVE-2017-13828].

An application can trigger a memory corruption error in the fsck_msdos component to execute arbitrary code with system privileges [CVE-2017-13811].

A remote user can trigger a cross-site scripting flaw in the HelpViewer component to execute JavaScript in another domain [CVE-2017-13819].

An application can trigger a memory corruption error in the HFS component to execute arbitrary code with system privileges [CVE-2017-13830].

A remote user can trigger a memory corruption error in the ImageIO component to execute arbitrary code [CVE-2017-13814].

A remote user can create a specially crafted image that, when loaded by the target user, will trigger a memory management error in the ImageIO component and cause denial of service conditions [CVE-2017-13831].

A local user can trigger a permissions error in packet counters in the kernel component to obtain potentially sensitive information [CVE-2017-13810].

A local user can trigger an out-of-bounds read error in the the kernel component to obtain portions of kernel memory [CVE-2017-13817].

An application can trigger a input validation flaw in the the kernel component to read restricted memory [CVE-2017-13782, CVE-2017-13818, CVE-2017-13836, CVE-2017-13840, CVE-2017-13841, CVE-2017-13842].

An application can trigger a memory corruption error in the the kernel component to execute arbitrary code with kernel privileges [CVE-2017-13843].

A remote user can create a specially crafted mach binary that, when loaded by the target user, will trigger a memory corruption error in the the kernel component to execute arbitrary code [CVE-2017-13834].

A remote user can trigger a buffer overflow in the libarchive component to execute arbitrary code [CVE-2017-13813, CVE-2017-13816].

A remote user can trigger a memory corruption error in the libarchive component to execute arbitrary code [CVE-2017-13812].

An application can trigger a input validation flaw in the Quick Look component to read restricted memory [CVE-2017-13822].

A remote user can trigger a memory handling error in the Quick Look component to execute arbitrary code [CVE-2017-7132].

An application can trigger a input validation flaw in the QuickTime component to read restricted memory [CVE-2017-13823].

An application can trigger a memory corruption error in the Remote Management component to execute arbitrary code with system privileges [CVE-2017-13808].

An application can trigger a memory corruption error in the Sandbox component to execute arbitrary code with system privileges [CVE-2017-13838].

Australian Cyber Security Centre - Australian Signals Directorate, John Villamil, Doyensec, Kevin Backhouse of Semmle Ltd., Maxime Villard (m00nbsd), Sergej Schumilo of Ruhr-University Bochum, The UK's National Cyber Security Centre (NCSC), Yangkang (@dnpushme) of Qihoo 360 Qex Team, an anonymous researcher, and xisigr of Tencent's Xuanwu Lab (tencent.com) reported these vulnerabilities.

Impact:   A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.

A remote user can cause denial of service conditions.

A local user can obtain potentially sensitive information on the target system.

A local user can obtain potentially sensitive information from system memory on the target system.

An application can obtain elevated privileges on the target system.

Solution:   The vendor has issued a fix.

The vendor advisory is available at:

https://support.apple.com/en-us/HT208221

Vendor URL:  support.apple.com/en-us/HT208221 (Links to External Site)
Cause:   Access control error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2018, SecurityGlobal.net LLC