Arbitrary code execution vulnerability in IDE Xcode Server in Apple Mac OS X - CVE-2016-0702
|ID: oval:org.secpod.oval:def:37847||Date: (C)2016-10-28 (M)2017-11-15|
|Class: VULNERABILITY||Family: macos|
The host is installed with Xcode before 8.1 on Apple Mac OS X 10.11.5 or later and is prone to an arbitrary code execution vulnerability. A flaw is present in the Node.js, which fails to handle unknown vectors. Successful exploitation allows attackers to cause unexpected application termination or arbitrary code execution.
|Apple Mac OS X 10.11|
|Apple Mac OS X Server 10.11|
|Apple Mac OS X 10.12|
|Apple Mac OS X Server 10.12|