漏洞信息详情
多款CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple产品安全漏洞
- CNNVD编号:CNNVD-201607-856
- 危害等级: 高危
- CVE编号: CVE-2016-4594
- 漏洞类型: 输入验证
- 发布时间: 2016-07-26
- 威胁类型: 本地
- 更新时间: 2019-03-21
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源:
漏洞简介
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS、OS X、tvOS和watchOS都是美国苹果(CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple)公司的产品。CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS是为移动设备所开发的一套操作系统;OS X是为Mac计算机所开发的一套专用操作系统;tvOS是一套智能电视操作系统;watchOS是一套智能手表操作系统。Sandbox Profiles是其中的一个沙盒(Sandbox)组件。
多款CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple产品中的Sandbox Profiles组件中存在安全漏洞。攻击者可借助使用API调用的应用程序利用该漏洞访问进程列表。以下产品和版本受到影响:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iOS 9.3.3之前版本,OS X 10.11.6之前版本,tvOS 9.2.2之前版本,watchOS 2.2.2之前版本。
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206902
https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206903
https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206905
https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206904
参考网址
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2016/Jul/msg00000.HTML
来源:CONFIRM
链接:https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206904
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2016/Jul/msg00003.HTML
来源:CONFIRM
链接:https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206905
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2016/Jul/msg00002.HTML
来源:SECTRACK
链接:http://www.securitytracker.com/id/1036344
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2016/Jul/msg00001.HTML
来源:BID
链接:http://www.securityfocus.com/bid/91834
来源:CONFIRM
链接:https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206902
来源:CONFIRM
链接:https://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/HT206903
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple iPhone_os:9.3.2
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Watchos:2.2.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Mac_os_x:10.11.5
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple_tv:9.2.1
补丁
- 多款CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple产品安全漏洞的修复措施
评论