Details of VAR-201508-0427

ID

VAR-201508-0427

CVE

CVE-2015-3783

TITLE

Apple OS X of SceneKit Vulnerable to arbitrary code execution

Trust: 0.8

sources: JVNDB: JVNDB-2015-004277

DESCRIPTION

SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors. Apple Mac OS X is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code with system privileges, gain admin privileges, bypass security restrictions, cause denial-of-service conditions, obtain sensitive information, and perform other attacks. Note: The issue described by CVE-2015-3778 has been removed. The issue is discussed in BID 83590 (Apple Mac OS X and iOS CVE-2015-3778 Information Disclosure Vulnerability). These issues affect OS X prior to 10.10.5. SceneKit is one of the 3D rendering frameworks

Trust: 1.98

sources: NVD: CVE-2015-3783 // JVNDB: JVNDB-2015-004277 // BID: 76340 // VULHUB: VHN-81744

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	lte	version:	10.10.4	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.10 to 10.10.4	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	10.8.5	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	10.9.5	Trust: 0.8
vendor:	apple	model:	mac os x	scope:	eq	version:	10.10.4	Trust: 0.6
vendor:	apple	model:	quicktime	scope:	eq	version:	7.6	Trust: 0.3
vendor:	apple	model:	quicktime	scope:	eq	version:	7.3.4	Trust: 0.3
vendor:	apple	model:	quicktime	scope:	eq	version:	7.2	Trust: 0.3
vendor:	apple	model:	quicktime	scope:	eq	version:	7	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.9	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.8	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.7	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.6	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.10	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.0	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	2.0	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.4	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.3	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.0	Trust: 0.3

sources: BID: 76340 // JVNDB: JVNDB-2015-004277 // CNNVD: CNNVD-201508-291 // NVD: CVE-2015-3783

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-3783
value:	HIGH
Trust: 1.0
NVD:	CVE-2015-3783
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201508-291
value:	HIGH
Trust: 0.6
VULHUB:	VHN-81744
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2015-3783
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-81744
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-81744 // JVNDB: JVNDB-2015-004277 // CNNVD: CNNVD-201508-291 // NVD: CVE-2015-3783

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-81744 // JVNDB: JVNDB-2015-004277 // NVD: CVE-2015-3783

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201508-291

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201508-291

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-004277

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-81744

PATCH

title:	Apple security updates	url:	http://support.apple.com/en-us/HT1222	Trust: 0.8
title:	APPLE-SA-2015-08-13-2 OS X Yosemite v10.10.5 and Security Update 2015-006	url:	http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html	Trust: 0.8
title:	HT205031	url:	http://support.apple.com/en-us/HT205031	Trust: 0.8
title:	HT205031	url:	http://support.apple.com/ja-jp/HT205031	Trust: 0.8

sources: JVNDB: JVNDB-2015-004277

EXTERNAL IDS

db:	NVD	id:	CVE-2015-3783	Trust: 2.8
db:	BID	id:	76340	Trust: 2.0
db:	EXPLOIT-DB	id:	38264	Trust: 1.1
db:	SECTRACK	id:	1033276	Trust: 1.1
db:	JVN	id:	JVNVU94440136	Trust: 0.8
db:	JVNDB	id:	JVNDB-2015-004277	Trust: 0.8
db:	CNNVD	id:	CNNVD-201508-291	Trust: 0.7
db:	ZDI	id:	ZDI-15-390	Trust: 0.3
db:	VULHUB	id:	VHN-81744	Trust: 0.1

sources: VULHUB: VHN-81744 // BID: 76340 // JVNDB: JVNDB-2015-004277 // CNNVD: CNNVD-201508-291 // NVD: CVE-2015-3783

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2015/aug/msg00001.html	Trust: 1.7
url:	http://www.securityfocus.com/bid/76340	Trust: 1.7
url:	https://support.apple.com/kb/ht205031	Trust: 1.7
url:	https://www.exploit-db.com/exploits/38264/	Trust: 1.1
url:	http://www.securitytracker.com/id/1033276	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-3783	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu94440136/index.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-3783	Trust: 0.8
url:	http://www.apple.com/macosx/	Trust: 0.3
url:	http://www.zerodayinitiative.com/advisories/zdi-15-390/	Trust: 0.3
url:	http://prod.lists.apple.com/archives/security-announce/2015/aug/msg00004.html	Trust: 0.3
url:	https://support.apple.com/en-ie/ht205031	Trust: 0.3

sources: VULHUB: VHN-81744 // BID: 76340 // JVNDB: JVNDB-2015-004277 // CNNVD: CNNVD-201508-291 // NVD: CVE-2015-3783

CREDITS

An anonymous researcher working with HP's Zero Day Initiative, Jeffrey Paul of EEQJ, Jan Bee of the Google Security Team, Maxime VILLARD of m00nbsd, Ryan Pentney and Richard Johnson of Cisco Talos, Xiaoyong Wu of the Evernote Security Team, JieTao Yang of KeenTeam

Trust: 0.6

sources: CNNVD: CNNVD-201508-291

SOURCES

db:	VULHUB	id:	VHN-81744
db:	BID	id:	76340
db:	JVNDB	id:	JVNDB-2015-004277
db:	CNNVD	id:	CNNVD-201508-291
db:	NVD	id:	CVE-2015-3783

LAST UPDATE DATE

2024-11-23T19:55:22.736000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-81744	date:	2017-09-21T00:00:00
db:	BID	id:	76340	date:	2016-07-05T21:35:00
db:	JVNDB	id:	JVNDB-2015-004277	date:	2015-08-21T00:00:00
db:	CNNVD	id:	CNNVD-201508-291	date:	2015-08-21T00:00:00
db:	NVD	id:	CVE-2015-3783	date:	2024-11-21T02:29:50.830

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-81744	date:	2015-08-16T00:00:00
db:	BID	id:	76340	date:	2015-08-13T00:00:00
db:	JVNDB	id:	JVNDB-2015-004277	date:	2015-08-21T00:00:00
db:	CNNVD	id:	CNNVD-201508-291	date:	2015-08-18T00:00:00
db:	NVD	id:	CVE-2015-3783	date:	2015-08-16T23:59:56.003