Published: 20/05/2016 Updated: 02/12/2016

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

IOHIDFamily in Apple OS X prior to 10.11.5 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x

## physmem  physmem is a physical memory inspection tool and local privilege escalation targeting macOS up through 10121 It exploits either [CVE-2016-1825] or [CVE-2016-7617] depending on the deployment target These two vulnerabilities are nearly identical, and exploitation can be done exactly the same They were pa ...

Local privilege escalation through macOS 10.12.1 via CVE-2016-1825 or CVE-2016-7617.

physmem physmem is a physical memory inspection tool and local privilege escalation targeting macOS up through 10121 It exploits either CVE-2016-1825 or CVE-2016-7617 depending on the deployment target These two vulnerabilities are nearly identical, and exploitation can be done exactly the same They were patched in OS X El Capitan 10115 and macOS Sierra 10122, respect

CWE-119 https://support.apple.com/HT206567 http://lists.apple.com/archives/security-announce/2016/May/msg00004.html http://www.securityfocus.com/bid/90696 http://www.securitytracker.com/id/1035895 https://nvd.nist.gov https://github.com/bazad/physmem https://www.exploit-db.com/exploits/44237/

CVE-2016-1825

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect