CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2014-4376 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4376
19 Sep 2014 — IOKit in IOAcceleratorFamily in Apple OS X before 10.9.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted API arguments. IOKit en IOAcceleratorFamily en Apple OS X anterior a 10.9.5 permite a atacantes ejecutar código arbitrario en un contexto privilegiado o causar una denegación de servicio (referencia a puntero nulo) a través de una aplicación que provee argumentos de API manipulados. OS X Ma... • http://support.apple.com/kb/HT6443 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4399 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4399
19 Sep 2014 — An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4398, CVE-2014-4400, CVE-2014-4401, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en App... • http://support.apple.com/kb/HT6443 • CWE-20: Improper Input Validation •
CVSS: 3.3EPSS: 0%CPEs: 5EXPL: 0CVE-2014-4403 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4403
19 Sep 2014 — The kernel in Apple OS X before 10.9.5 allows local users to obtain sensitive address information and bypass the ASLR protection mechanism by leveraging predictability of the location of the CPU Global Descriptor Table. El Kernel en Apple OS X anterior a 10.9.5 permite a usuarios locales obtener información sensible de direcciones y saltarse el mecanismo de protección ASLR mediante el aprovechamiento de previsibilidad de la localización de la CPU Global Descriptor Table. OS X Mavericks 10.9.5 and Security U... • http://support.apple.com/kb/HT6443 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2014-4393 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4393
19 Sep 2014 — Buffer overflow in the shader compiler in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted GLSL shader. Desbordamiento de buffer en el compilador de sombreado en el subsistema Intel Graphics Driver en Apple OS X anterior a 10.9.5 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de la aplicación) a través de un sombreado GLSL manipula... • http://support.apple.com/kb/HT6443 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4401 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4401
19 Sep 2014 — An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en App... • http://support.apple.com/kb/HT6443 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4398 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4398
19 Sep 2014 — An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en App... • http://support.apple.com/kb/HT6443 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4396 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4396
19 Sep 2014 — An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4397, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en App... • http://support.apple.com/kb/HT6443 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4416 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4416
19 Sep 2014 — An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, and CVE-2014-4401. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en App... • http://support.apple.com/kb/HT6443 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 86%CPEs: 8EXPL: 0CVE-2014-4350 – Apple QuickTime MIDI Heap Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-4350
19 Sep 2014 — Buffer overflow in QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MIDI file. Desbordamiento de buffer en QT Media Foundation en Apple OS X anterior a 10.9.5 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de la aplicación) a través de un fichero MIDI manipulado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable in... • http://support.apple.com/kb/HT6443 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4397 – Apple Security Advisory 2014-09-17-3
https://notcve.org/view.php?id=CVE-2014-4397
19 Sep 2014 — An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en App... • http://support.apple.com/kb/HT6443 • CWE-20: Improper Input Validation •