Apple Mac OS X Multiple Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Apple Mac OS X, which could be exploited by remote or local attackers to disclose sensitive information, bypass security restrictions, cause a denial of service or compromise an affected system. These issues are caused by errors in AFP Server, Apache, mod_perl, AppKit, ATS, CFNetwork, CoreGraphics, CoreText, CUPS, Directory Services, diskdev_cmds, Disk Images, Flash Player plug-in, gzip, Image Capture, ImageIO, Image RAW, Kernel, MySQL, neon, Networking, OpenLDAP, OpenSSL, Password Server, PHP, Printing, python, QuickLook, QuickLook, QuickTime, Safari RSS, Time Machine, Wiki Server, X11, and xar.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- Apple Mac OS X version 10.5.8 and prior
- Apple Mac OS X versions 10.6 through 10.6.4
- Apple Mac OS X Server version 10.5.8
- Apple Mac OS X Server versions 10.6 through 10.6.4
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Apply Security Update 2010-007 (Leopard Client) :
http://support.apple.com/kb/DL1329 - Apply Security Update 2010-007 (Leopard Server) :
http://support.apple.com/kb/DL1330 - Apply Mac OS X v10.6.5 Update (Combo) :
http://support.apple.com/kb/DL1324 - Apply Mac OS X Server v10.6.5 Update Combo :
http://support.apple.com/kb/DL1326 - Apply Mac OS X v10.6.5 Update :
http://support.apple.com/kb/DL1325 - Apply Mac OS X Server v10.6.5 Update :
http://support.apple.com/kb/DL1327
Vulnerability Identifier
- CVE-2008-4546
- CVE-2009-0796
- CVE-2009-0946
- CVE-2009-2473
- CVE-2009-2474
- CVE-2009-2624
- CVE-2009-3793
- CVE-2009-4134
- CVE-2010-0001
- CVE-2010-0105
- CVE-2010-0205
- CVE-2010-0209
- CVE-2010-0211
- CVE-2010-0212
- CVE-2010-0397
- CVE-2010-0408
- CVE-2010-0434
- CVE-2010-1205
- CVE-2010-1297
- CVE-2010-1378
- CVE-2010-1449
- CVE-2010-1450
- CVE-2010-1752
- CVE-2010-1803
- CVE-2010-1811
- CVE-2010-1828
- CVE-2010-1829
- CVE-2010-1830
- CVE-2010-1831
- CVE-2010-1832
- CVE-2010-1833
- CVE-2010-1834
- CVE-2010-1836
- CVE-2010-1837
- CVE-2010-1838
- CVE-2010-1840
- CVE-2010-1841
- CVE-2010-1842
- CVE-2010-1843
- CVE-2010-1844
- CVE-2010-1845
- CVE-2010-1846
- CVE-2010-1847
- CVE-2010-1848
- CVE-2010-1849
- CVE-2010-1850
- CVE-2010-2160
- CVE-2010-2161
- CVE-2010-2162
- CVE-2010-2163
- CVE-2010-2164
- CVE-2010-2165
- CVE-2010-2166
- CVE-2010-2167
- CVE-2010-2169
- CVE-2010-2170
- CVE-2010-2171
- CVE-2010-2172
- CVE-2010-2173
- CVE-2010-2174
- CVE-2010-2175
- CVE-2010-2176
- CVE-2010-2177
- CVE-2010-2178
- CVE-2010-2179
- CVE-2010-2180
- CVE-2010-2181
- CVE-2010-2182
- CVE-2010-2183
- CVE-2010-2184
- CVE-2010-2185
- CVE-2010-2186
- CVE-2010-2187
- CVE-2010-2188
- CVE-2010-2189
- CVE-2010-2213
- CVE-2010-2214
- CVE-2010-2215
- CVE-2010-2216
- CVE-2010-2249
- CVE-2010-2484
- CVE-2010-2497
- CVE-2010-2498
- CVE-2010-2499
- CVE-2010-2500
- CVE-2010-2519
- CVE-2010-2520
- CVE-2010-2531
- CVE-2010-2805
- CVE-2010-2806
- CVE-2010-2807
- CVE-2010-2808
- CVE-2010-2884
- CVE-2010-2941
- CVE-2010-3053
- CVE-2010-3054
- CVE-2010-3636
- CVE-2010-3638
- CVE-2010-3639
- CVE-2010-3640
- CVE-2010-3641
- CVE-2010-3642
- CVE-2010-3643
- CVE-2010-3644
- CVE-2010-3645
- CVE-2010-3646
- CVE-2010-3647
- CVE-2010-3648
- CVE-2010-3649
- CVE-2010-3650
- CVE-2010-3652
- CVE-2010-3654
- CVE-2010-3783
- CVE-2010-3784
- CVE-2010-3785
- CVE-2010-3786
- CVE-2010-3787
- CVE-2010-3788
- CVE-2010-3789
- CVE-2010-3790
- CVE-2010-3791
- CVE-2010-3792
- CVE-2010-3793
- CVE-2010-3794
- CVE-2010-3795
- CVE-2010-3796
- CVE-2010-3797
- CVE-2010-3798
- CVE-2010-3976
- CVE-2010-4010
Source
Related Link
Share with