SecurityTeam US - Mac OS X Security Update Fixes Multiple Vulnerabilities


	Contribute : Advanced Search : Web Resources : Polls : File Repository

Poll
What would you like to see on SecurityTeamUS? More News Product Reviews HowTo's Custom RPM/Packages/Tools Other (Please leave comment) Results 96 votes \| 0 comments

Topics
Home Apache Apple Application Software Cisco Systems Database Servers Internet Explorer Linux Macromedia Microsoft Mozilla/Firefox Phishing/ID Theft Real Networks Security News Sun Microsystems Web Appliances/Devices Web Scripts Wi-Fi

Virus Alerts
17 Apr 2011 Troj/Mdrop-DKE 17 Apr 2011 Troj/Sasfis-O 17 Apr 2011 Troj/Keygen-FU 17 Apr 2011 Troj/Zbot-AOY 17 Apr 2011 Troj/Zbot-AOW 17 Apr 2011 W32/Womble-E 17 Apr 2011 Troj/VB-FGD 17 Apr 2011 Troj/FakeAV-DFF 17 Apr 2011 Troj/SWFLdr-W 17 Apr 2011 W32/RorpiaMem-A

Events
There are no upcoming events

Welcome to SecurityTeam US
Monday, February 06 2012 @ 12:32 PM EST

Mac OS X Security Update Fixes Multiple Vulnerabilities

Thursday, February 10 2005 @ 10:23 AM EST

Apple has issued a security update for Mac OS X, which fixes various vulnerabilities.

1) The "at" family of utilities ("at", "atrm", "batch", "atq", and "atrun") does not drop privileges properly. This can be exploited to delete arbitrary files, execute arbitrary commands with escalated privileges, or read the contents of arbitrary files.

The vulnerability has been reported in Mac OS X 10.3.4 (Darwin kernel xnu-517.7.7) and has been confirmed in Mac OS X 10.3.7 (Darwin kernel xnu-517.9.5). Other versions may also be affected.

2) A boundary error in the ColorSync component when processing ICC color profiles can be exploited to cause a heap-based buffer overflow. This allows execution of arbitrary code via a specially crafted ICC color profile.

3) Various vulnerabilities in the libxml2 component can potentially be exploited to compromise a vulnerable system.

4) An information disclosure weakness in the Mail component makes it possible to determine the system from which an email has been sent. The problem is that an identifier associated with the Ethernet networking hardware is included in the "Message-ID" header.

5) Multiple vulnerabilities in PHP can be exploited to e.g. cause a DoS (Denial of Service) or execute arbitrary code.

6) A vulnerability in Safari can be exploited by malicious people to spoof the content of web sites.

7) A vulnerability in SquirrelMail can be exploited by malicious people to conduct script insertion attacks.

OPERATING SYSTEM:
Apple Macintosh OS X

SOLUTION:
Apply Security Update 2005-001.

Mac OS X 10.2.8 Client:
http://www.apple.com/support/downloads/securityupdate2005001macosx1028client.html

Mac OS X 10.2.8 Server:
http://www.apple.com/support/downloads/securityupdate2005001macosx1028server.html

Mac OS X 10.3.7 Client:
http://www.apple.com/support/downloads/securityupdate2005001macosx1037client.html

Mac OS X 10.3.7 Server:
http://www.apple.com/support/downloads/securityupdate2005001macosx1037server.html

PROVIDED AND/OR DISCOVERED BY:
1) Immunity (vendor credits kf_lists[at]digitalmunition[dot]com)
4) Carl Purvis
6) Secunia Research

ORIGINAL ADVISORY:
Apple:
http://docs.info.apple.com/article.html?artnum=300770

Immunity:
http://www.immunitysec.com/downloads/nukido.pdf

VERIFY ADVISORY:
http://secunia.com/advisories/14005/

Secunia Security Advisories

What's Related
http://www.apple.com/su... http://www.apple.com/su... http://www.apple.com/su... http://www.apple.com/su... http://docs.info.apple.... http://www.immunitysec.... http://secunia.com/advi... More from Apple

Story Options
Mail Story to a Friend Printable Story Format

Mac OS X Security Update Fixes Multiple Vulnerabilities | 0 comments | Create New Account

The following comments are owned by whomever posted them. This site is not responsible for what they say.

Dedicated Servers
Created this page in 0.17 seconds