Apple OS X Server Multiple Vulnerabilities

Last Update Date: 19 Sep 2013 12:17 Release Date: 19 Sep 2013 3247 Views

RISK: Medium Risk

Medium Risk

TYPE: Operating Systems - Mac OS

TYPE: Mac OS

Multiple vulnerabilities have been identified in Apple OS X Server, which can be exploited by malicious users to conduct brute force and script insertion attacks, bypass certain security restrictions, cause a DoS (Denial of Service), or potentially compromise a vulnerable system.

  1. Some errors exist due to a bundled vulnerable version of ClamAV and PostgreSQL.
  2. Certain input within the Wiki Server component is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.

Impact

  • Cross-Site Scripting
  • Denial of Service
  • Remote Code Execution
  • Security Restriction Bypass

System / Technologies affected

  • Versions prior to 2.2.2

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 2.2.2.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Mozilla Products Multiple Vulnerabilities

18 Sep 2013 3165 Views

Next

Apple iTunes Memory Corruption Vulnerability

19 Sep 2013 3276 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY