Arbitrary Code Execution via Captive Network Assistant in Apple OS X

CVE-2016-1800 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Captive Network Assistant in Apple OS X before 10.11.5 mishandles a custom URL scheme, which allows user-assisted remote attackers to execute arbitrary code via unspecified vectors.

Learn more about our Network Penetration Testing.