RSS   Vulnerabilities for 'Little snitch'   RSS

2017-04-06
 
CVE-2017-2675

 

 
Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.obdev.littlesnitchd.plist" which gets installed to /Library/LaunchDaemons.

 
2016-11-15
 
CVE-2016-8661

 

 
Little Snitch version 3.0 through 3.6.1 suffer from a buffer overflow vulnerability that could be locally exploited which could lead to an escalation of privileges (EoP) and unauthorised ring0 access to the operating system. The buffer overflow is related to insufficient checking of parameters to the "OSMalloc" and "copyin" kernel API calls.

 

 >>> Vendor: Objective development 3 Products
Webyep
Sharity
Little snitch


Copyright 2019, cxsecurity.com

 

Back to Top