Apple Mac OS X Multiple Vulnerabilities
Last Update Date:
23 Mar 2011 09:46
Release Date:
23 Mar 2011
5777
Views
RISK: High Risk
TYPE: Operating Systems - Mac OS
Multiple vulnerabilities have been identified in Apple Mac OS X, which could be exploited by remote or local attackers to disclose sensitive information, bypass security restrictions, cause a denial of service or compromise an affected system. These issues are caused by errors in AirPort, Apache, AppleScript, ATS, bzip2, CarbonCore, ClamAV, CoreText, File Quarantine, HFS, ImageIO, Image RAW, Installer, Kerberos, Kernel, Libinfo, libxml, Mailman, PHP, QuickLook, QuickTime, Ruby, Samba, Subversion, Terminal, and X11.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- Apple Mac OS X version 10.5.8 and prior
- Apple Mac OS X versions 10.6 through 10.6.6
- Apple Mac OS X Server version 10.5.8
- Apple Mac OS X Server versions 10.6 through 10.6.6
Solutions
- Security Update 2011-001 (Leopard - Client) :
http://support.apple.com/downloads/DL1366/en_US/SecUpd2011-001.dmg - Security Update 2011-001 (Leopard - Server) :
http://support.apple.com/downloads/DL1367/en_US/SecUpdSrvr2011-001.dmg - Mac OS X v10.6.7 Update :
http://support.apple.com/downloads/DL1363/en_US/MacOSXUpd10.6.7.dmg - Mac OS X v10.6.7 Update Combo :
http://support.apple.com/downloads/DL1361/en_US/MacOSXUpdCombo10.6.7.dmg - Mac OS X v10.6.7 Update for early 2011 MacBook Pro :
http://support.apple.com/downloads/DL1368/en_US/MacOSXUpd10.6.7MBPEarly2011.dmg - Mac OS X Server v10.6.7 Update Combo :
http://support.apple.com/downloads/DL1364/en_US/MacOSXServerUpdCombo10.6.7.dmg - Mac OS X Server v10.6.7 Update :
http://support.apple.com/downloads/DL1362/en_US/MacOSXServerUpd10.6.7.dmg
Vulnerability Identifier
- CVE-2006-7243
- CVE-2010-0405
- CVE-2010-1323
- CVE-2010-1324
- CVE-2010-1452
- CVE-2010-2068
- CVE-2010-2950
- CVE-2010-3069
- CVE-2010-3089
- CVE-2010-3315
- CVE-2010-3434
- CVE-2010-3436
- CVE-2010-3709
- CVE-2010-3710
- CVE-2010-3801
- CVE-2010-3802
- CVE-2010-3814
- CVE-2010-3855
- CVE-2010-3870
- CVE-2010-4008
- CVE-2010-4009
- CVE-2010-4020
- CVE-2010-4021
- CVE-2010-4150
- CVE-2010-4260
- CVE-2010-4261
- CVE-2010-4409
- CVE-2010-4479
- CVE-2010-4494
- CVE-2011-0170
- CVE-2011-0172
- CVE-2011-0173
- CVE-2011-0174
- CVE-2011-0175
- CVE-2011-0176
- CVE-2011-0177
- CVE-2011-0178
- CVE-2011-0179
- CVE-2011-0180
- CVE-2011-0181
- CVE-2011-0182
- CVE-2011-0183
- CVE-2011-0184
- CVE-2011-0186
- CVE-2011-0187
- CVE-2011-0188
- CVE-2011-0189
- CVE-2011-0190
- CVE-2011-0191
- CVE-2011-0192
- CVE-2011-0193
- CVE-2011-0194
- CVE-2011-1417
Source
Related Link
Share with