CVE-2016-1813

moderate-risk
Published 2016-05-20

The IOAccelSharedUserClient2::page_off_resource method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.

Do I need to act?

~
4.6% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
39924
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10 High
LOCAL / LOW complexity

Affected Products (4)

Affected Vendors

Apple

References (26)

Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00001.html
Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00002.html
Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00003.html
Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00004.html
Third Party Advisory http://packetstormsecurity.com/files/137400/OS-X-IOAccelSharedUserClient2-page_o...
Third Party Advisory http://www.securityfocus.com/bid/90694
Third Party Advisory http://www.securitytracker.com/id/1035890
Exploit https://bugs.chromium.org/p/project-zero/issues/detail?id=778
Vendor Advisory https://support.apple.com/HT206564
Vendor Advisory https://support.apple.com/HT206566
Vendor Advisory https://support.apple.com/HT206567
Vendor Advisory https://support.apple.com/HT206568
Exploit https://www.exploit-db.com/exploits/39924/
Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00001.html
Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00002.html
Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00003.html
Mailing List http://lists.apple.com/archives/security-announce/2016/May/msg00004.html
Third Party Advisory http://packetstormsecurity.com/files/137400/OS-X-IOAccelSharedUserClient2-page_o...
Third Party Advisory http://www.securityfocus.com/bid/90694
Third Party Advisory http://www.securitytracker.com/id/1035890
and 6 more references
49
/ 100
moderate-risk
Severity 24/34 · High
Exploitability 15/34 · Moderate
Exposure 10/34 · Low