[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

112965

 
 

909

 
 

88036

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Arbitrary code execution vulnerability in XCode in Apple Mac OS X

ID: oval:org.secpod.oval:def:42141Date: (C)2017-09-21   (M)2018-01-05
Class: VULNERABILITYFamily: macos




The host is installed with Xcode before 9.0 on Apple Mac OS X 10.12.6 or later and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle An ssh:// URL scheme.Successful exploitation may lead to arbitrary code execution

Platform:
Apple Mac OS X 10.11
Apple Mac OS X Server 10.11
Apple Mac OS X 10.12
Apple Mac OS X Server 10.12
Product:
Apple XCode
Reference:
CVE-2017-1000117
CVE    1
CVE-2017-1000117
CPE    52
cpe:/a:git-scm:git:2.9.0
cpe:/a:git-scm:git:2.9.1
cpe:/a:git-scm:git:2.9.2
cpe:/a:git-scm:git:2.7.5
...

© SecPod Technologies