AppleMac OS X Multiple Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Apple Mac OS X,which could be exploited by remote or local attackers to disclosesensitive information, bypass security restrictions, cause a denialof service or compromise an affected system. These vulnerabilitiesare caused by buffer overflows, integer overflows, uninitialized pointers,memory corruption , implementation, unchecked error condition, crosssite scripting, logic and synchronization in Alias Manager, CarbonCore,ClamAV, ColorSync, CoreGraphics, CUPS, Flash Player plug-in, ImageIO,Launch Services, MySQL, PHP, SMB and Wiki Server.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
Mac OS X version 10.4.11 and prior
Mac OS X Server version 10.4.11 and prior
Mac OS X versions 10.5 through 10.5.8
Mac OS X Server versions 10.5 through 10.5.8
Mac OS X version 10.6
Mac OS X Server version 10.6
Solutions
Before installation of the software, please visit the software manufacturerweb-site for more details.
Apply Apple Security Update 2009-005 :
http://www.apple.com/support/downloads/
Vulnerability Identifier
- CVE-2008-2079
- CVE-2008-5498
- CVE-2008-6680
- CVE-2009-0590
- CVE-2009-0591
- CVE-2009-0789
- CVE-2009-0949
- CVE-2009-1241
- CVE-2009-1270
- CVE-2009-1271
- CVE-2009-1272
- CVE-2009-1371
- CVE-2009-1372
- CVE-2009-1862
- CVE-2009-1863
- CVE-2009-1864
- CVE-2009-1865
- CVE-2009-1866
- CVE-2009-1867
- CVE-2009-1868
- CVE-2009-1869
- CVE-2009-1870
- CVE-2009-2468
- CVE-2009-2800
- CVE-2009-2803
- CVE-2009-2804
- CVE-2009-2805
- CVE-2009-2807
- CVE-2009-2809
- CVE-2009-2811
- CVE-2009-2812
- CVE-2009-2813
- CVE-2009-2814
Source
Related Link
Share with