|
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA31882
|
|
|
Release Date:
|
2008-09-16
|
|
Popularity:
|
5,628 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
Security Bypass
Cross Site Scripting
Spoofing
Manipulation of data
Exposure of system information
Exposure of sensitive information
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Apple Macintosh OS X
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 2 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Solution:
Update to Mac OS X 10.5.5 or apply Security Update 2008-006.
Security Update 2008-006 Client (Intel):
http://www.apple.com/support/downloads/securityupdate2008006clientintel.html
Security Update 2008-006 Client (PPC):
http://www.apple.com/support/downloads/securityupdate2008006clientppc.html
Security Update 2008-006 Server (PPC):
http://www.apple.com/support/downloads/securityupdate2008006serverppc.html
Security Update 2008-006 Server (Universal):
http://www.apple.com/support/downloads/securityupdate2008006serveruniversal.html
Mac OS X 10.5.5 Combo Update:
http://www.apple.com/support/downloads/macosx1055comboupdate.html
Mac OS X 10.5.5 Update:
http://www.apple.com/support/downloads/macosx1055update.html
Mac OS X Server 10.5.5:
http://www.apple.com/support/downloads/macosxserver1055.html
Mac OS X Server Combo 10.5.5:
http://www.apple.com/support/downloads/macosxservercombo1055.html
Provided and/or discovered by:
1) The vendor credits Chris Ries, Carnegie Mellon University Computing Services.
3) The vendor credits IT Department of the West Seneca Central School District
5) The vendor credits Michel Colman.
6) The vendor credits Yuxuan Wang, Sogou.
8) The vendor credits Robert Swiecki, Google Security Team.
11) The vendor credits Nevin Liber, Thomas Pelaia of Oak Ridge National Lab, Thomas Tempelmann, and Ram Kolli.
12) Dan Kaminsky, IOActive
14) The vendor credits Christopher A. Grande, Middlesex Community College
15) The vendor credits an anonymous person via iDefense VCP.
19) The vendor credits Hernan Ochoa of Core Security Technologies, Tore Halset of pvv.org, and Matt Johnston of the University Computer Club.
20) The vendor credits Edwin McKenzie.
22) The vendor credits Leon von Tippelskirch and Matthias Wieczorek of the Chair for Applied Software Engineering, TU Munich
Original Advisory:
Apple:
http://support.apple.com/kb/HT3137
Other References:
SA29000:
http://secunia.com/advisories/29000/
SA29522:
http://secunia.com/advisories/29522/
SA29602:
http://secunia.com/advisories/29602/
SA29792:
http://secunia.com/advisories/29792/
SA30657:
http://secunia.com/advisories/30657/
SA30924:
http://secunia.com/advisories/30924/
SA31610:
http://secunia.com/advisories/31610/
SA31821:
http://secunia.com/advisories/31821/
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
Today
|
New advisories:
|
6 |
|
New vulnerabilities:
|
23 |
|
Updated advisories:
|
66 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
6th Nov, 2009
|
New advisories:
|
17 |
|
New vulnerabilities:
|
65 |
|
Updated advisories:
|
21 |
|
|
|
|
|
|
|
|
|
|
|
|
|
 Solutions | More...
|
|
