CVE-2015-7007

CVE-2015-7007 affects Apple OS X Script Editor prior to 10.11.1. The vulnerability allows remote attackers to bypass the intended user confirmation for AppleScript execution via unspecified vectors, enabling arbitrary AppleScript execution without user approval. Impact, per sources, is partial co...

Safari User-Assisted Applescript Exec Attack

In versions of Mac OS X before 10.11.1, the applescript:// URL scheme is provided, which opens the provided script in the Applescript Editor. Pressing cmd-R in the Editor executes the code without any additional confirmation from the user. By getting the user to press cmd-R in Safari, and by...

Mac OS X Security Update 2008-007

The remote host is missing Security Update 2008-007. One or more of the following components are affected: Apache Certificates ClamAV ColorSync CUPS Finder launchd libxslt MySQL Server Networking PHP Postfix PSNormalizer QuickLook rlogin Script Editor Single Sign-On Tomcat vim Weblog OpenVAS...

CVE-2008-4214

Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local users to cause the scripting dictionary to be written to arbitrary locations, related to an "insecure file operation" on temporary files...

Design/Logic Flaw

Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local users to cause the scripting dictionary to be written to arbitrary locations, related to an "insecure file operation" on temporary files...

CVE-2008-4214

Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local users to cause the scripting dictionary to be written to arbitrary locations, related to an "insecure file operation" on temporary files...

CVE-2008-4214

CVE-2008-4214 describes an unspecified vulnerability in Mac OS X Script Editor (Mac OS X 10.4.11 and 10.5.5) where a local user can cause the scripting dictionary to be written to arbitrary locations due to an insecure file operation on temporary files. The issue is a local privilege/overwrite ri...

Mac OS X Multiple Vulnerabilities (Security Update 2008-007)

The remote host is running a version of Mac OS X 10.5 or 10.4 that does not have the security update 2008-007 applied. This security update contains fixes for the following products : - Apache - Certificates - ClamAV - ColorSync - CUPS - Finder - launchd - libxslt - MySQL Server - Networking - PH...