3 matches found
APPLE-SA-2014-09-17-6 OS X Server 2.2.3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-09-17-6 OS X Server 2.2.3 OS X Server 2.2.3 is now available and addresses the following: CoreCollaboration Available for: OS X Mountain Lion v10.8.5 Impact: A remote attacker may be able to execute arbitrary SQL queries Description: A S...
CVE-2014-4424
CVE-2014-4424 is an SQL injection vulnerability in CoreCollaboration’s Wiki Server on Apple OS X Server, affecting OS X Server before 2.2.3 and OS X Server 3.x before 3.2.1. The issue allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Apple addresses include OS X S...
Mac OS X : OS X Server < 2.2.3 Wiki SQL Injection
The remote Mac OS X 10.8 host has a version of OS X Server installe that is prior to 2.2.3. It is, therefore, affected by a SQL injection vulnerability in the Wiki Server component due to improper validation of user-supplied input. A remote attacker can exploit this to inject or manipulate SQL...