Advisories
Research
Forums
Create Profile
Our Commitment
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading

Vulnerability Report: Apple Macintosh OS X

This vulnerability report for Apple Macintosh OS X contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Apple Macintosh OS X then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2014
2.2. Statistics for 2013
2.3. Statistics for 2012
2.4. Statistics for 2011
2.5. Statistics for 2010
2.6. Statistics for 2009
2.7. Statistics for 2008
2.8. Statistics for 2007
2.9. Statistics for 2006
2.10. Statistics for 2005
2.11. Statistics for 2004
2.12. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2014
3.2. List for 2013
3.3. List for 2012
3.4. List for 2011
3.5. List for 2010
3.6. List for 2009
3.7. List for 2008
3.8. List for 2007
3.9. List for 2006
3.10. List for 2005
3.11. List for 2004
3.12. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Apple

Product Link View Here (Link to external site)

Affected By 179 Secunia advisories
2118 Vulnerabilities

Monitor Product Receive alerts for this product





26 Secunia Advisories in 2007

Secunia has issued a total of 26 Secunia advisories in 2007 for Apple Macintosh OS X. Currently, 12% (3 out of 26) are marked as unpatched with the most severe being rated Less critical

More information about the specific Secunia advisories affecting Apple Macintosh OS X can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 26 in 2007. 17,740 views.
Release Date:
2007-12-18
Secunia Advisory ID:
SA28136
Solution Status:
Vendor Patch
Criticality:
Impact:
Hijacking
Security Bypass
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. [Read More]


Mac OS X Java Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 26 in 2007. 16,169 views.
Release Date:
2007-12-17
Secunia Advisory ID:
SA28115
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Some vulnerabilities have been reported and acknowledged in Mac OS X, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, to cause a DoS (Denial of Service), or to compromise a user's system. [Read More]


Mac OS X "cs_validate_page()" Local Denial of Service
Vendor Patch. Secunia Advisory 3 of 26 in 2007. 12,991 views.
Release Date:
2007-12-13
Secunia Advisory ID:
SA28048
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
Local system
Short Description:
mu-b has reported a vulnerability in Mac OS X, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]


Mac OS X vpnd Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 4 of 26 in 2007. 15,439 views.
Release Date:
2007-12-07
Secunia Advisory ID:
SA27938
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
mu-b has reported a vulnerability in Apple Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Mac OS X Local Denial of Service Vulnerability
Unpatched. Secunia Advisory 5 of 26 in 2007. 14,664 views.
Release Date:
2007-12-05
Secunia Advisory ID:
SA27884
Solution Status:
Unpatched
Criticality:
Impact:
DoS
Where:
Local system
Short Description:
A vulnerability has been discovered in Mac OS X, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]


Apple Mail Command Execution Vulnerability
Vendor Patch. Secunia Advisory 6 of 26 in 2007. 20,388 views.
Release Date:
2007-11-22
Secunia Advisory ID:
SA27785
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
A vulnerability has been reported in Apple Mail, which can be exploited by malicious people to compromise a user's system. [Read More]


Apple Mac OS X Application Firewall Weaknesses and Security Issue
Vendor Patch. Secunia Advisory 7 of 26 in 2007. 16,003 views.
Release Date:
2007-11-16
Secunia Advisory ID:
SA27695
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
Some weaknesses and a security issue have been reported in Apple Mac OS X, which can lead to exposure of certain services. [Read More]


Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 8 of 26 in 2007. 23,030 views.
Release Date:
2007-11-15
Secunia Advisory ID:
SA27643
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. [Read More]


Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 9 of 26 in 2007. 17,924 views.
Release Date:
2007-08-01
Secunia Advisory ID:
SA26235
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Cross Site Scripting
Spoofing
Manipulation of data
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. [Read More]


Apple Mac OS X Security Update for Two Vulnerabilities
Vendor Patch. Secunia Advisory 10 of 26 in 2007. 17,817 views.
Release Date:
2007-06-25
Secunia Advisory ID:
SA25786
Solution Status:
Vendor Patch
Criticality:
Impact:
Cross Site Scripting
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes two vulnerabilities. [Read More]


Apple Mac OS X IPv6 Type 0 Route Headers Denial of Service
Vendor Patch. Secunia Advisory 11 of 26 in 2007. 16,031 views.
Release Date:
2007-06-21
Secunia Advisory ID:
SA25770
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
A security issue has been reported in Apple Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Apple Mac OS X Security Update for Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 12 of 26 in 2007. 17,028 views.
Release Date:
2007-05-25
Secunia Advisory ID:
SA25402
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. [Read More]


Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 13 of 26 in 2007. 19,208 views.
Release Date:
2007-04-20
Secunia Advisory ID:
SA24966
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Manipulation of data
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. [Read More]


Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 14 of 26 in 2007. 24,397 views.
Release Date:
2007-03-14
Secunia Advisory ID:
SA24479
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Cross Site Scripting
Manipulation of data
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. [Read More]


Mac OS X Security Update Fixes Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 15 of 26 in 2007. 17,842 views.
Release Date:
2007-02-16
Secunia Advisory ID:
SA24198
Solution Status:
Vendor Patch
Criticality:
Impact:
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. [Read More]


Apple Mac OS X iChat Bonjour Denial of Service
Vendor Patch. Secunia Advisory 16 of 26 in 2007. 20,092 views.
Release Date:
2007-01-31
Secunia Advisory ID:
SA23945
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
LMH has reported a vulnerability in Apple iChat, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Apple Mac OS X QuickDraw Denial of Service
Vendor Patch. Secunia Advisory 17 of 26 in 2007. 16,841 views.
Release Date:
2007-01-25
Secunia Advisory ID:
SA23859
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
LMH has reported a vulnerability in Apple Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Apple Mac OS X "UserNotificationCenter" Privilege Escalation
Vendor Patch. Secunia Advisory 18 of 26 in 2007. 17,322 views.
Release Date:
2007-01-24
Secunia Advisory ID:
SA23846
Solution Status:
Vendor Patch
Criticality:
Impact:
Privilege escalation
Where:
Local system
Short Description:
A vulnerability has been reported in Mac OS X, which can be exploited by malicious, local users to gain escalated privileges. [Read More]


Apple Mac OS X "/sbin/service" Weakness
Vendor Patch. Secunia Advisory 19 of 26 in 2007. 17,400 views.
Release Date:
2007-01-23
Secunia Advisory ID:
SA23793
Solution Status:
Vendor Patch
Criticality:
Impact:
Privilege escalation
Where:
Local system
Short Description:
KF has reported a weakness in Apple Mac OS X, which can be exploited by malicious, local users to gain escalated privileges. [Read More]


Apple Mac OS X "shared_region_map_file_np()" Denial of Service
Unpatched. Secunia Advisory 20 of 26 in 2007. 13,116 views.
Release Date:
2007-01-22
Secunia Advisory ID:
SA23823
Solution Status:
Unpatched
Criticality:
Impact:
DoS
Where:
Local system
Short Description:
Adriano Lima has discovered a vulnerability in Apple Mac OS X, which can be exploited by malicious, local users to cause a DoS (Denial of Service). [Read More]


Apple Mac OS X slpd Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 21 of 26 in 2007. 15,918 views.
Release Date:
2007-01-19
Secunia Advisory ID:
SA23796
Solution Status:
Vendor Patch
Criticality:
Impact:
Privilege escalation
DoS
Where:
Local system
Short Description:
KF has reported a vulnerability in Apple Mac OS X, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially to gain escalated privileges. [Read More]


Mac OS X HFS+ "do_hfs_truncate()" Denial of Service
Vendor Patch. Secunia Advisory 22 of 26 in 2007. 13,485 views.
Release Date:
2007-01-15
Secunia Advisory ID:
SA23742
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
LMH has reported a vulnerability in Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Apple Mac OS X AppleTalk "ATPsndrsp()" Privilege Escalation
Vendor Patch. Secunia Advisory 23 of 26 in 2007. 13,183 views.
Release Date:
2007-01-15
Secunia Advisory ID:
SA23708
Solution Status:
Vendor Patch
Criticality:
Impact:
Privilege escalation
DoS
Where:
Local system
Short Description:
LMH has reported a vulnerability in Mac OS X, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or potentially to gain escalated privileges. [Read More]


Apple Mac OS X UFS Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 24 of 26 in 2007. 14,418 views.
Release Date:
2007-01-12
Secunia Advisory ID:
SA23725
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
LMH has reported some vulnerabilities in Apple Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Apple Mac OS X UFS ffs_mountfs() Integer Overflow
Vendor Patch. Secunia Advisory 25 of 26 in 2007. 26,712 views.
Release Date:
2007-01-11
Secunia Advisory ID:
SA23703
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
System access
Where:
From remote
Short Description:
LMH has reported a vulnerability in Mac OS X, which can potentially be exploited by malicious people to compromise a user's system. [Read More]


Mac OS X BOM Privilege Escalation Vulnerability
Unpatched. Secunia Advisory 26 of 26 in 2007. 15,602 views.
Release Date:
2007-01-08
Secunia Advisory ID:
SA23653
Solution Status:
Unpatched
Criticality:
Impact:
Privilege escalation
Where:
Local system
Short Description:
A vulnerability has been reported in Mac OS X, which can be exploited by malicious, local users to gain escalated privileges. [Read More]





Discuss this Product
A new thread in our forum is automatically created for each Product. Activate the thread by commenting/discussing below.
Subject: Apple Macintosh OS X 
User Message
Caimbul RE: Apple Macintosh OS X
Member 12th May, 2010 23:34
Score: 4
Posts: 1
User Since: 12th May 2010
System Score: N/A
Location: CA
Last edited on 12th May, 2010 23:34
I would like to know why the Product page for OSX doesn't have a section on unpatched Advisories.
I mean that is the whole reason why people would use this page. We wouldn't really care (although the numbers do cause concern) about the quantity of advisories and vulnerabilities. We need to know how many are still unpatched.
There is a section for Win7, XP, even IBM OS/400 6.x..
Was this reply relevant?
+4
-0
Karthik2010 RE: Apple Macintosh OS X
Member 7th Aug, 2010 05:56
Score: 1
Posts: 1
User Since: 7th Aug 2010
System Score: N/A
Location: ES
Last edited on 7th Aug, 2010 05:56
There is a section for Windows XP (Windows NT 5.1), Windows Vista (Windows NT 6.0) and Windows 7 (Windows NT 6.1), ¿ Where are the sections for Panther (OS X 10.3), Tiger (OS X 10.4), Leopard (OS X 10.5) and Snow Leopard (OS X 10.6)?
Was this reply relevant?
+1
-0
RichardD RE: Apple Macintosh OS X
Member 11th Nov, 2010 22:02
Score: 7
Posts: 5
User Since: 4th Mar 2010
System Score: N/A
Location: UK
Last edited on 11th Nov, 2010 22:11
Take a look at the listings for most OSs or applications. Each listing has a title similar to "Product - type vulnerability" or "Product - multiple vulnerabilities".

Now look at the listings for Mac OS (any version). With the exception of the latest entry, all other entries have titles like "Mac OS version patch fixes type vulnerability" or "Mac OS version patch fixes multiple vulnerabilities".

Maybe the staff at Secunia are Mac fan-boys who can't bring themselves to believe that their beloved OS could have a "vulnerability" and console themselves by calling it a "patch" instead?
Was this reply relevant?
+0
-1
ddmarshall RE: Apple Macintosh OS X
Dedicated Contributor 11th Nov, 2010 23:19
Score: 1205
Posts: 957
User Since: 8th Nov 2008
System Score: 98%
Location: UK
I don't think you'll start a Mac v PC war here.

Strangely, all the products Secunia sells are for Windows. I doubt they pay much attention to Apple. They are probably just listing them for completeness.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+1
-0

alsiona

RE: Apple Macintosh OS X
[+]
This reply has been minimised due to a negative Relevancy Score.

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability