|
Feeds -
Exploits
|
|
Written by Rosyna of Unsanity, Graham Perrin of CENTRIM, Mark Dalrymple, Lars Haulin, Clint Ruoho of Laconic Security, Billy Rios of Microsoft, Brian Mastenbrook, and the vendor
|
|
Wednesday, 18 February 2009 20:30 |
RETIRED: Apple Mac OS X 2009-001 Multiple Security Vulnerabilities
-\\Bugtraq ID:
33759
-\\Class:
Unknown
-\\CVE:
-\\Remote:
Yes
-\\Local:
Yes
-\\Published:
Feb 12 2009 12:00AM
-\\Updated:
Feb 18 2009 04:37PM
-\\Credit:
Rosyna of Unsanity, Graham Perrin of CENTRIM, Mark Dalrymple, Lars Haulin, Clint Ruoho of Laconic Security, Billy Rios of Microsoft, Brian Mastenbrook, and the vendor
-\\Vulnerable:
Apple Mac OS X Server 10.5.6
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.5.4
Apple Mac OS X Server 10.5.3
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.4.11
Apple Mac OS X Server 10.4.11
Apple Mac OS X Server 10.4.10
Apple Mac OS X Server 10.4.9
Apple Mac OS X Server 10.4.8
Apple Mac OS X Server 10.4.7
Apple Mac OS X Server 10.4.6
Apple Mac OS X Server 10.4.5
Apple Mac OS X Server 10.4.4
Apple Mac OS X Server 10.4.3
Apple Mac OS X Server 10.4.2
Apple Mac OS X Server 10.4.1
Apple Mac OS X Server 10.4
Apple Mac OS X Server 10.5
Apple Mac OS X 10.5.6
Apple Mac OS X 10.5.5
Apple Mac OS X 10.5.4
Apple Mac OS X 10.5.3
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.4.11
Apple Mac OS X 10.4.11
Apple Mac OS X 10.4.10
Apple Mac OS X 10.4.9
Apple Mac OS X 10.4.8
Apple Mac OS X 10.4.7
Apple Mac OS X 10.4.6
Apple Mac OS X 10.4.5
Apple Mac OS X 10.4.4
Apple Mac OS X 10.4.3
Apple Mac OS X 10.4.2
Apple Mac OS X 10.4.1
Apple Mac OS X 10.4
Apple Mac OS X 10.5
-\\Discussion
Apple Mac OS X is prone to multiple security vulnerabilities that have been addressed in Security Update 2009-001.
The security update addresses new vulnerabilities that affect the AFP server, movie playing, Resource Manager, Certificate Assistant, CoreText, 'dscl', Folder Manager, FSEvents, csregprinter, Remote Apple Event Viewer, Safari, Xterm, and SMB components of Mac OS X. The advisory also contains security updates for 32 previously reported issues.
NOTE: The new issues have been covered in the following BIDs to better document them:
33806 Apple Mac OS X Pixlet Video Handling Remote Code Execution Vulnerability
33820 Apple Mac OS X Insecure Downloads Folder Permissions Information Disclosure Vulnerability
33815 Apple Mac OS X 'dscl' Local Information Disclosure Vulnerability
33816 Apple Mac OS X Remote Apple Events Uninitialized Buffer Information Disclosure Vulnerability
33814 Apple Mac OS X Remote Apple Events Out of Bounds Memory Access Security Vulnerability
33813 Apple Mac OS X Server Manager Authentication Bypass Security Vulnerability
33812 Apple Mac OS X AFP Server Remote Denial of Service Vulnerability
33810 Apple Mac OS X Certificate Assistant Insecure Temporary File Creation Vulnerability
33811 Apple Mac OS X 'csregprinter' Local Privilege Escalation Vulnerability
33808 Apple Mac OS X Resource Manager Remote Code Execution Vulnerability
33809 Apple Mac OS X CoreText Unicode String Handling Heap Based Buffer Overflow Vulnerability
33800 Apple Mac OS X SMB Component Unspecified Buffer Overflow Vulnerability
33798 Apple Mac OS X Xterm Local Privilege Escalation Vulnerability
33796 Apple Mac OS X SMB File System Remote Denial Of Service Vulnerability
33234 Apple Safari 'feed:' URI Multiple Input Validation Vulnerabilities
33821 Apple Mac OS X 'FSEvents' Local Information Disclosure Vulnerabilit
-\\Exploit(s)/PoC(s):
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at:
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
.
NOTE: Some of these issues will not require specific exploit code and may be trivial to exploit.
-\\Solution
The vendor has released an advisory and updates to address these issues. Please see the references for more information.
Apple Mac OS X Server 10.4.11
--Apple SecUpdSrvr2009-001PPC.dmg
for PPC
http://support.apple.com/downloads/Security_Update_2009_001__Server_Tiger_PPChttp://support.apple.com/downloads/Security_Update_2009_001__Server_Tiger_PPC_
--Apple SecUpdSrvr2009-001Univ.dmg
Universal
http://support.apple.com/downloads/Security_Update_2009_001__Server_Universalhttp://support.apple.com/downloads/Security_Update_2009_001__Server_Universal_
Apple Mac OS X 10.4.11
--Apple SecUpd2009-001Intel.dmg
for Intel
http://support.apple.com/downloads/Security_Update_2009_001__Tiger_Intelhttp://support.apple.com/downloads/Security_Update_2009_001__Tiger_Intel_
--Apple SecUpd2009-001PPC.dmg
for PPC
http://support.apple.com/downloads/Security_Update_2009_001__Tiger_PPChttp://support.apple.com/downloads/Security_Update_2009_001__Tiger_PPC_
Apple Mac OS X 10.5.6
--Apple SecUpd2009-001.dmg
http://support.apple.com/downloads/Security_Update_2009_001__Leopardhttp://support.apple.com/downloads/Security_Update_2009_001__Leopard_
Apple Mac OS X Server 10.5.6
--Apple SecUpdSrvr2009-001.dmg
http://support.apple.com/downloads/Security_Update_2009_001__Server_Leopardhttp://support.apple.com/downloads/Security_Update_2009_001__Server_Leopard_
-\\Reference(s)
--About the security content of Security Update 2009-001
http://support.apple.com/kb/ht343 (Apple)
--Mac OS X Home Page
http://www.apple.com/macosx (Apple)
|
