4 matches found
CVE-2007-5863
creationtimestamp| type| source ---|---|--- 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16867 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/osx/browser/softwareupdate.rb 2025-02-06 03:13:38+00:00| seen|...
Mac OS X Security Update 2007-009
The remote host is missing Security Update 2007-009. One or more of the following components are affected: Address Book CFNetwork ColorSync Core Foundation CUPS Desktop Services Flash Player Plug-in GNU Tar iChat IO Storage Family Launch Services Mail perl python Quick Look ruby Safari Safari RSS...
CVE-2007-5863
CVE-2007-5863 concerns Apple OS X Software Update (10.5.1) where a MITM between client and server, using a modified distribution definition file with the “allow-external-scripts” option, allows remote command execution. Public sources in the connected set corroborate an Apple OS X Software Update...
Apple OS X Software Update Command Execution
This module exploits a feature in the Distribution Packages, which are used in the Apple Software Update mechanism. This feature allows for arbitrary command execution through JavaScript. This exploit provides the malicious update server. Requests must be redirected to this server by other means...