CVE-2017-2512
https://notcve.org/view.php?id=CVE-2017-2512
The issue involves the "Sandbox" component. It allows attackers to conduct sandbox-escape attacks or cause a denial of service (memory corruption) via a crafted app. ... El problema involucra al componente "Sandbox". Permite a los atacantes conducir ataques de escape del sandbox o causar una denegación de servicio (corrupción de memoria) por medio de una aplicación diseñada. • http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-2535 – Apple macOS authd Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2017-2535
It allows attackers to conduct sandbox-escape attacks or cause a denial of service (resource consumption) via a crafted app. ... Permite a los atacantes conducir ataques de escape del sandbox o causar una denegación de servicio (consumo de recursos) por medio de una aplicación especialmente diseñada. • http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 • CWE-20: Improper Input Validation CWE-400: Uncontrolled Resource Consumption •
CVE-2017-6977 – Apple macOS speechsynthesisd Unsigned Dylib Loading Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2017-6977
It allows attackers to conduct sandbox-escape attacks or cause a denial of service (memory corruption) via a crafted app. ... Permite a los atacantes conducir ataques de escape del sandbox o causar una denegación de servicio (corrupción de memoria) por medio de una aplicación diseñada. • http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-2534 – Apple macOS speechsynthesisd Unsigned Dylib Loading Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2017-2534
It allows attackers to conduct sandbox-escape attacks via a crafted app. ... Permite a los atacantes conducir ataques de escape del sandbox por medio de una aplicación diseñada. • http://www.securitytracker.com/id/1038484 https://support.apple.com/HT207797 •
CVE-2017-0233 – Microsoft Edge WriteClassesOfCategory DLL Planting Sandbox Escape Vulnerability
https://notcve.org/view.php?id=CVE-2017-0233
An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka "Microsoft Edge Elevation of Privilege Vulnerability." ... This vulnerability allows remote attackers to escape the AppContainer sandbox on vulnerable installations of Microsoft Edge. • http://www.securityfocus.com/bid/98179 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0233 •