CVE-2016-8661

moderate-risk
Published 2016-11-15

Little Snitch version 3.0 through 3.6.1 suffer from a buffer overflow vulnerability that could be locally exploited which could lead to an escalation of privileges (EoP) and unauthorised ring0 access to the operating system. The buffer overflow is related to insufficient checking of parameters to the "OSMalloc" and "copyin" kernel API calls.

Do I need to act?

-
0.05% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.4/10 High
LOCAL / LOW complexity

Affected Products (20)

Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch
Little Snitch

Affected Vendors

Obdev

References (4)

http://www.securityfocus.com/bid/94352
https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-s...
http://www.securityfocus.com/bid/94352
https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-s...
46
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 0/34 · Minimal
Exposure 20/34 · Moderate