CVE-2016-4739Sensitive Information Exposure in Apple MAC OS X

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
3.7LOWNVD
EPSS
0.3%
top 42.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple Macos Sierra
Timeline
PublishedSep 25
Latest updateMay 17

Description

mDNSResponder in Apple OS X before 10.12, when VMnet.framework is used, arranges for a DNS proxy to listen on all interfaces, which allows remote attackers to obtain sensitive information by sending a DNS query to an unintended interface.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.2 | Impact: 1.4

Affected Packages2 packages

NVDapple/mac_os_x10.11.6
Appleapple/macos_sierra10.12

🔴Vulnerability Details

1
GHSA
GHSA-c6c7-pw3f-f4hm: mDNSResponder in Apple OS X before 102022-05-17

📋Vendor Advisories

1
Apple
CVE-2016-4739: macOS Sierra 10.122016-09-20