High severity8.4NVD Advisory· Published Nov 15, 2016· Updated Jun 17, 2026
CVE-2016-8661
CVE-2016-8661
Description
Little Snitch version 3.0 through 3.6.1 suffer from a buffer overflow vulnerability that could be locally exploited which could lead to an escalation of privileges (EoP) and unauthorised ring0 access to the operating system. The buffer overflow is related to insufficient checking of parameters to the "OSMalloc" and "copyin" kernel API calls.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22cpe:2.3:a:obdev:little_snitch:3.0:*:*:*:*:*:*:*+ 20 more
- cpe:2.3:a:obdev:little_snitch:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:obdev:little_snitch:3.6.1:*:*:*:*:*:*:*
- Range: 3.0 - 3.6.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.