Arbitrary code execution vulnerability in AppleUSBNetworking in Apple OS X while parsing data from USB devices - CVE-2016-1734ID: oval:org.secpod.oval:def:33705 | Date: (C)2016-03-24 (M)2024-01-29 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS X or Server 10.11.x before 10.11.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle parsing of data from USB devices. Successful exploitation could allow remote attackers to execute arbitrary code with kernel privileges or corrupt memory.
Platform: |
Apple Mac OS X 10.11 |
Apple Mac OS X Server 10.11 |