6 matches found
EUVD-2013-3600
Malware in sbrugna...
多个Bare Bones软件产品软件升级机制校验漏洞
CVE ID:CVE-2013-3667 Bare Bones Software是一家开发Apple Mac平台上软件工具的公司。 Bare Bones Software Yojimbo 4.0之前版本, TextWrangler 4.5.3之前版本, 和BBEdit 10.5.5之前版本中所使用的软件升级机制在安装软件之前不正确下载和校验升级,允许攻击者利用漏洞更改或破坏升级内容。 0 Bare Bones Software Yojimbo Bare Bones Software TextWrangler Bare Bones Software BBEdit 厂商补丁: Bare...
CVE-2013-3667
The software update mechanism as used in Bare Bones Software Yojimbo before 4.0, TextWrangler before 4.5.3, and BBEdit before 10.5.5 does not properly download and verify updates before installation, which allows attackers to perform "tampering or corruption" of the updates...
Design/Logic Flaw
The software update mechanism as used in Bare Bones Software Yojimbo before 4.0, TextWrangler before 4.5.3, and BBEdit before 10.5.5 does not properly download and verify updates before installation, which allows attackers to perform "tampering or corruption" of the updates...
CVE-2013-3667
The vulnerability (CVE-2013-3667) affects Bare Bones Software products that use their software update mechanism: Yojimbo <= 3.x? (pre‑4.0), TextWrangler <= 4.5.3, and BBEdit
CVE-2013-3667
The software update mechanism as used in Bare Bones Software Yojimbo before 4.0, TextWrangler before 4.5.3, and BBEdit before 10.5.5 does not properly download and verify updates before installation, which allows attackers to perform "tampering or corruption" of the updates...