CVE-2016-4662 Apple Mac OS X Security Update Sierra 10.12.1, El Capitan 2016-002 and Yosemite 2016-006 Not Installed (APPLE-SA-2016-10-24-2)

2016年11月7日 1173点热度 0人点赞 0条评论

漏洞类别：Local

漏洞等级：

漏洞信息

Apple Mac OS X security update for Sierra 10.12.1, El Capitan v10.11.6 and Yosemite v10.10.5 is not installed. The update addresses 16 vulnerabilities in total. The vulnerabilities are caused due to several memory corrupting issues among others.

漏洞危害

Successful exploitation of the vulnerabilities can allow an attacker to:

1. Remote Code Execution with root privileges

2. Denial of Service

3. Expose the length of a user's password

解决方案

The should be updated to Sierra 10.12.1 or latest patched updates for El Capitan v10.11.6 and Yosemite to address the mentioned security risks. For more information regarding the update click here

Patch:
Following are links for downloading patches to fix the vulnerabilities:

APPLE-SA-2016-10-24-2: Apple Mac OS X

0day

CVE-2016-4662 Apple Mac OS X Security Update Sierra 10.12.1, El Capitan 2016-002 and Yosemite 2016-006 Not Installed (APPLE-SA-2016-10-24-2)

文章评论