navigation bar left navigation bar right

navigation left tab Advisories navigation right tab
navigation left tab Research navigation right tab
navigation left tab Forums navigation right tab
navigation left tab Create Profile navigation right tab
navigation left tab Our Commitment navigation right tab
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading

Vulnerability Report: Apple Macintosh OS X

This vulnerability report for Apple Macintosh OS X contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Apple Macintosh OS X then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2014
2.2. Statistics for 2013
2.3. Statistics for 2012
2.4. Statistics for 2011
2.5. Statistics for 2010
2.6. Statistics for 2009
2.7. Statistics for 2008
2.8. Statistics for 2007
2.9. Statistics for 2006
2.10. Statistics for 2005
2.11. Statistics for 2004
2.12. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2014
3.2. List for 2013
3.3. List for 2012
3.4. List for 2011
3.5. List for 2010
3.6. List for 2009
3.7. List for 2008
3.8. List for 2007
3.9. List for 2006
3.10. List for 2005
3.11. List for 2004
3.12. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Apple

Product Link View Here (Link to external site)

Affected By 184 Secunia advisories
2210 Vulnerabilities

Monitor Product Receive alerts for this product





23 Secunia Advisories in 2003

Secunia has issued a total of 23 Secunia advisories in 2003 for Apple Macintosh OS X. Currently, 0% (0 out of 23) are marked as unpatched.

More information about the specific Secunia advisories affecting Apple Macintosh OS X can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



patched Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 23 in 2003. 20,685 views.
Release Date:
2003-12-22
Secunia Advisory ID:
SA10474
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
Security Bypass
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued security updates for Mac OS X. These fix several vulnerabilities, which can be exploited by malicious people to perform a variety of attacks. [Read More]


patched Mac OS X cd9660.util Privilege Escalation Vulnerability
Vendor Patch. Secunia Advisory 2 of 23 in 2003. 24,184 views.
Release Date:
2003-12-16
Secunia Advisory ID:
SA10440
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Privilege escalation
Where:
Local system
Short Description:
Max has reported a vulnerability in Mac OS X, which can be exploited by malicious, local users to escalate their privileges. [Read More]


patched Mac OS X Insecure Default DHCP Packet Handling Vulnerability
Vendor Patch. Secunia Advisory 3 of 23 in 2003. 19,482 views.
Release Date:
2003-11-27
Secunia Advisory ID:
SA10295
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
System access
Where:
From local network
Short Description:
A vulnerability has been identified in Mac OS X, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


patched Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 23 in 2003. 14,999 views.
Release Date:
2003-11-20
Secunia Advisory ID:
SA10269
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Where:
From remote
Short Description:
Apple has issued a Security Update, which fixes an OpenSSL vulnerability in Mac OS X as well as a couple of older issues in version 10.2.8. [Read More]


patched Mac OS X Terminal Application Unspecified Vulnerability
Vendor Patch. Secunia Advisory 5 of 23 in 2003. 11,859 views.
Release Date:
2003-11-06
Secunia Advisory ID:
SA10151
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Privilege escalation
Where:
Local system
Short Description:
Apple has reported a vulnerability in Mac OS X, which can be exploited by malicious users to gain "unauthorized access to a system". [Read More]


patched Mac OS X Updated Version Addresses Thirteen Vulnerabilities
Vendor Patch. Secunia Advisory 6 of 23 in 2003. 16,287 views.
Release Date:
2003-10-29
Secunia Advisory ID:
SA10086
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Security Bypass
Exposure of sensitive information
Privilege escalation
DoS
Where:
From local network
Short Description:
Multiple vulnerabilities have been reported in Mac OS X, where the impact spans from local DoS (Denial of Service) vulnerabilities to privilege escalation, security bypasses and information disclosure. [Read More]


patched Mac OS X Screen Lock Bypass Vulnerability
Vendor Patch. Secunia Advisory 7 of 23 in 2003. 19,654 views.
Release Date:
2003-10-29
Secunia Advisory ID:
SA10089
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Security Bypass
Where:
Local system
Short Description:
A vulnerability has been reported in Mac OS X, which can be exploited by malicious users to perform actions while Screen Lock is enabled. [Read More]


patched Mac OS X Unspecified Quicktime Java System Compromise
Vendor Patch. Secunia Advisory 8 of 23 in 2003. 12,963 views.
Release Date:
2003-10-29
Secunia Advisory ID:
SA10087
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
System access
Where:
From remote
Short Description:
Apple has reported a vulnerability in Mac OS X, which can be exploited by malicious people to gain unauthorised access to a system. [Read More]


patched Mac OS X Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 9 of 23 in 2003. 13,706 views.
Release Date:
2003-09-23
Secunia Advisory ID:
SA9814
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
DoS
System access
Where:
From remote
Short Description:
Apple has acknowledged several vulnerabilities in Mac OS X, which potentially can be exploited by malicious people to compromise a vulnerable system or cause a DoS (Denial of Service). [Read More]


patched Mac OS X "fb_realpath()" Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 10 of 23 in 2003. 16,876 views.
Release Date:
2003-08-15
Secunia Advisory ID:
SA9535
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
System access
Where:
From remote
Short Description:
Apple has acknowledged a vulnerability in Mac OS X, which potentially can be exploited by malicious people to compromise a vulnerable system. [Read More]


patched Mac OS X Insecure Account Creation
Vendor Patch. Secunia Advisory 11 of 23 in 2003. 13,077 views.
Release Date:
2003-07-24
Secunia Advisory ID:
SA9344
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
System access
Where:
Local system
Short Description:
Apple has issued an update for Workgroup Manager because accounts are created without a password. [Read More]


patched Mac OS X Screensaver Password Bypass Vulnerability
Vendor Patch. Secunia Advisory 12 of 23 in 2003. 29,599 views.
Release Date:
2003-07-05
Secunia Advisory ID:
SA9184
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Security Bypass
Where:
Local system
Short Description:
A vulnerability has been identified in Mac OS X, which can be exploited by a malicious person with physical access to a system to bypass the password protected screensaver. [Read More]


patched Mac OS X Security Update for Apache and dsimportexport
Vendor Patch. Secunia Advisory 13 of 23 in 2003. 14,985 views.
Release Date:
2003-06-13
Secunia Advisory ID:
SA9025
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
Exposure of sensitive information
Exposure of system information
Where:
From remote
Short Description:
Apple has issued a Security Update for Mac OS X Server, which fixes two vulnerabilities. [Read More]


patched Mac OS X File Sharing Insecurity
Vendor Patch. Secunia Advisory 14 of 23 in 2003. 15,788 views.
Release Date:
2003-06-10
Secunia Advisory ID:
SA8978
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Security Bypass
Manipulation of data
Where:
From local network
Short Description:
Apple has issued an update to fix a potential security issue with sharing of UFS and re-sharing of NFS volumes allowing malicious users to overwrite arbitrary files. [Read More]


patched Mac OS X LDAP Clear Text User Credentials
Vendor Patch. Secunia Advisory 15 of 23 in 2003. 16,521 views.
Release Date:
2003-06-05
Secunia Advisory ID:
SA8945
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Exposure of sensitive information
Where:
From local network
Short Description:
A vulnerability has been identified in the LDAP implementation in Mac OS X allowing malicious people to sniff clear text passwords. [Read More]


patched Apple Mac OS X IPSec ACL Bypass
Vendor Patch. Secunia Advisory 16 of 23 in 2003. 15,753 views.
Release Date:
2003-05-19
Secunia Advisory ID:
SA8798
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Security Bypass
Where:
From remote
Short Description:
A vulnerability has been discovered in IPSec on Apple Mac OS X, which allows certain IP traffic to bypass ACLs (security policies) based on port numbers. [Read More]


patched Apple Safari and Konqueror Embedded Common Name Verification Vulnerability
Vendor Patch. Secunia Advisory 17 of 23 in 2003. 24,345 views.
Release Date:
2003-05-09
Secunia Advisory ID:
SA8756
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
Spoofing
Where:
From remote
Short Description:
Apple Safari and Konqueror Embedded fails to validate the Common Name of a SSL certificate. This makes it possible to spoof SSL sites, so that users can't trust the authenticity of a SSL website. [Read More]


patched Apple update for Mac OS X fixes 7 vulnerabilities
Vendor Patch. Secunia Advisory 18 of 23 in 2003. 12,078 views.
Release Date:
2003-04-11
Secunia Advisory ID:
SA8571
Solution Status:
Vendor Patch
Criticality:
Extremely critical
Impact:
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has released an update for Mac OS X. This fixes some known vulnerabilities as well as some new issues. [Read More]


patched Samba exploitable buffer overflow
Vendor Patch. Secunia Advisory 19 of 23 in 2003. 17,942 views.
Release Date:
2003-04-07
Secunia Advisory ID:
SA8533
Solution Status:
Vendor Patch
Criticality:
Highly critical
Impact:
System access
Where:
From local network
Short Description:
Samba is vulnerable to a buffer overflow, which can be exploited by anonymous users. [Read More]


patched Apple Mac OS X openssl and samba vulnerabilities
Vendor Patch. Secunia Advisory 20 of 23 in 2003. 12,428 views.
Release Date:
2003-03-25
Secunia Advisory ID:
SA8401
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
System access
Exposure of system information
Where:
From local network
Short Description:
Apple has issued updates for samba and openssl. [Read More]


patched Samba Packet Fragment Re-assembly Buffer Overflow
Vendor Patch. Secunia Advisory 21 of 23 in 2003. 18,076 views.
Release Date:
2003-03-17
Secunia Advisory ID:
SA8299
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
DoS
System access
Where:
From local network
Short Description:
A vulnerability has been identified in Samba, which can be exploited by a malicious person to compromise a vulnerable server. [Read More]


patched Mac OS X security updates
Vendor Patch. Secunia Advisory 22 of 23 in 2003. 8,942 views.
Release Date:
2003-02-17
Secunia Advisory ID:
SA8064
Solution Status:
Vendor Patch
Criticality:
Moderately critical
Impact:
System access
Where:
From remote
Short Description:
Apple has released a patch to cover multiple security issues. [Read More]


patched Mac OS X TruBlueEnvironment privilege escalation
Vendor Patch. Secunia Advisory 23 of 23 in 2003. 10,398 views.
Release Date:
2003-02-15
Secunia Advisory ID:
SA8062
Solution Status:
Vendor Patch
Criticality:
Less critical
Impact:
Privilege escalation
Where:
Local system
Short Description:
TruBlueEnvironment lets the user executing the application, supply path and name to the file which should contain debugging information. [Read More]





Discuss this Product
A new thread in our forum is automatically created for each Product. Activate the thread by commenting/discussing below.
Subject: Apple Macintosh OS X 
User Message
Caimbul RE: Apple Macintosh OS X
Member 12th May, 2010 23:34
Score: 4
Posts: 1
User Since: 12th May 2010
System Score: N/A
Location: CA
Last edited on 12th May, 2010 23:34
I would like to know why the Product page for OSX doesn't have a section on unpatched Advisories.
I mean that is the whole reason why people would use this page. We wouldn't really care (although the numbers do cause concern) about the quantity of advisories and vulnerabilities. We need to know how many are still unpatched.
There is a section for Win7, XP, even IBM OS/400 6.x..
Was this reply relevant?
+4
-0
Karthik2010 RE: Apple Macintosh OS X
Member 7th Aug, 2010 05:56
Score: 1
Posts: 1
User Since: 7th Aug 2010
System Score: N/A
Location: ES
Last edited on 7th Aug, 2010 05:56
There is a section for Windows XP (Windows NT 5.1), Windows Vista (Windows NT 6.0) and Windows 7 (Windows NT 6.1), ¿ Where are the sections for Panther (OS X 10.3), Tiger (OS X 10.4), Leopard (OS X 10.5) and Snow Leopard (OS X 10.6)?
Was this reply relevant?
+1
-0
RichardD RE: Apple Macintosh OS X
Member 11th Nov, 2010 22:02
Score: 7
Posts: 5
User Since: 4th Mar 2010
System Score: N/A
Location: UK
Last edited on 11th Nov, 2010 22:11
Take a look at the listings for most OSs or applications. Each listing has a title similar to "Product - type vulnerability" or "Product - multiple vulnerabilities".

Now look at the listings for Mac OS (any version). With the exception of the latest entry, all other entries have titles like "Mac OS version patch fixes type vulnerability" or "Mac OS version patch fixes multiple vulnerabilities".

Maybe the staff at Secunia are Mac fan-boys who can't bring themselves to believe that their beloved OS could have a "vulnerability" and console themselves by calling it a "patch" instead?
Was this reply relevant?
+0
-1
ddmarshall RE: Apple Macintosh OS X
Dedicated Contributor 11th Nov, 2010 23:19
Score: 1219
Posts: 971
User Since: 8th Nov 2008
System Score: 98%
Location: UK
I don't think you'll start a Mac v PC war here.

Strangely, all the products Secunia sells are for Windows. I doubt they pay much attention to Apple. They are probably just listing them for completeness.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+1
-0

alsiona

RE: Apple Macintosh OS X
[+]
This reply has been minimised due to a negative Relevancy Score.

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


Secunia is a member of FIRST Secunia is a member of EDUcause Secunia is a member of The Open Group Secunia is a member of FS-ISAC
 
Secunia © 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer
follow Secunia on Facebook follow Secunia on Twitter follow Secunia on LinkedIn follow Secunia on YouTube follow Secunia Xing follow Secunias RSS feed follow Secunia on Google+