cnvd - cnvd-2016-11263

CNVD-2016-11263

Vulnerability from cnvd - Published: 2016-11-18

Title

Objective Development Little Snitch缓冲区溢出漏洞

Description

Objective Development Little Snitch是奥地利Objective Development公司的一套专用于Mac的个人安全软件。 Objective Development Little Snitch 3.0至3.6.1版本中存在缓冲区溢出漏洞。本地攻击者可利用该漏洞提升权限，未授权访问操作系统。

Severity

高

Patch Name

Objective Development Little Snitch缓冲区溢出漏洞的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复此安全问题，详情请关注厂商主页： https://www.obdev.at/

Reference

https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-snitch-aint-one http://www.securityfocus.com/bid/94352

Impacted products

Name
Objective Development Little Snitch >=3.0，<=3.6.1

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "94352"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-8661"
    }
  },
  "description": "Objective Development Little Snitch\u662f\u5965\u5730\u5229Objective Development\u516c\u53f8\u7684\u4e00\u5957\u4e13\u7528\u4e8eMac\u7684\u4e2a\u4eba\u5b89\u5168\u8f6f\u4ef6\u3002\r\n\r\nObjective Development Little Snitch 3.0\u81f33.6.1\u7248\u672c\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\uff0c\u672a\u6388\u6743\u8bbf\u95ee\u64cd\u4f5c\u7cfb\u7edf\u3002",
  "discovererName": "patrick wardle.",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.obdev.at/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-11263",
  "openTime": "2016-11-18",
  "patchDescription": "Objective Development Little Snitch\u662f\u5965\u5730\u5229Objective Development\u516c\u53f8\u7684\u4e00\u5957\u4e13\u7528\u4e8eMac\u7684\u4e2a\u4eba\u5b89\u5168\u8f6f\u4ef6\u3002\r\n\r\nObjective Development Little Snitch 3.0\u81f33.6.1\u7248\u672c\u4e2d\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\uff0c\u672a\u6388\u6743\u8bbf\u95ee\u64cd\u4f5c\u7cfb\u7edf\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Objective Development Little Snitch\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Objective Development Little Snitch \u003e=3.0\uff0c\u003c=3.6.1"
  },
  "referenceLink": "https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-snitch-aint-one\r\nhttp://www.securityfocus.com/bid/94352",
  "serverity": "\u9ad8",
  "submitTime": "2016-11-16",
  "title": "Objective Development Little Snitch\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2016-8661 (GCVE-0-2016-8661)

Vulnerability from cvelistv5 – Published: 2016-11-15 15:00 – Updated: 2024-08-06 02:27

Summary

Little Snitch version 3.0 through 3.6.1 suffer from a buffer overflow vulnerability that could be locally exploited which could lead to an escalation of privileges (EoP) and unauthorised ring0 access to the operating system. The buffer overflow is related to insufficient checking of parameters to the "OSMalloc" and "copyin" kernel API calls.

Severity ?

No CVSS data available.

CWE

escalation of privileges

Assigner

obdev

References

URL

Tags

	http://www.securityfocus.com/bid/94352	vdb-entryx_refsource_BID
	https://speakerdeck.com/patrickwardle/defcon-2016…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	Little Snitch version 3.0 through 3.6.1	Affected: Little Snitch version 3.0 through 3.6.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T02:27:41.325Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "94352",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/94352"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-snitch-aint-one"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Little Snitch version 3.0 through 3.6.1",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Little Snitch version 3.0 through 3.6.1"
            }
          ]
        }
      ],
      "datePublic": "2016-11-15T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Little Snitch version 3.0 through 3.6.1 suffer from a buffer overflow vulnerability that could be locally exploited which could lead to an escalation of privileges (EoP) and unauthorised ring0 access to the operating system. The buffer overflow is related to insufficient checking of parameters to the \"OSMalloc\" and \"copyin\" kernel API calls."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "escalation of privileges",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-11-25T19:57:01",
        "orgId": "e0cebea7-a708-4bfe-81c1-855d35eb4544",
        "shortName": "obdev"
      },
      "references": [
        {
          "name": "94352",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/94352"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-snitch-aint-one"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2016-8661",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Little Snitch version 3.0 through 3.6.1",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Little Snitch version 3.0 through 3.6.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Little Snitch version 3.0 through 3.6.1 suffer from a buffer overflow vulnerability that could be locally exploited which could lead to an escalation of privileges (EoP) and unauthorised ring0 access to the operating system. The buffer overflow is related to insufficient checking of parameters to the \"OSMalloc\" and \"copyin\" kernel API calls."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "escalation of privileges"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "94352",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/94352"
            },
            {
              "name": "https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-snitch-aint-one",
              "refsource": "MISC",
              "url": "https://speakerdeck.com/patrickwardle/defcon-2016-i-got-99-problems-but-little-snitch-aint-one"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e0cebea7-a708-4bfe-81c1-855d35eb4544",
    "assignerShortName": "obdev",
    "cveId": "CVE-2016-8661",
    "datePublished": "2016-11-15T15:00:00",
    "dateReserved": "2016-10-14T00:00:00",
    "dateUpdated": "2024-08-06T02:27:41.325Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2016-11263

CVE-2016-8661 (GCVE-0-2016-8661)

Tags

Sightings

Nomenclature