36 matches found
Apple Mac OSX < 10.10.x - GateKeeper Bypass
Exploit Title: OS X Gatekeeper bypass Vulnerability Date: 01-27-2015 Exploit Author: Amplia Security Research Vendor Homepage: www.apple.com Version: OS X Lion, OS X Mountain Lion, OS X Mavericks, OS X Yosemite Tested on: OS X Lion, OS X Mountain Lion, OS X Mavericks, OS X Yosemite CVE :...
OS X Gatekeeper Bypass
OS X Gatekeeper Bypass Vulnerability Amplia Security - Amplia Security Research Advisory AMPLIA-ARA100614 Advisory ID: AMPLIA-ARA100614 Advisory URL: http://www.ampliasecurity.com/advisories/os-x-gatekeeper-bypass-vulnerability.html, http://www.ampliasecurity.com/advisories/AMPLIA-ARA100614.txt...
Apple Patches Shellshock Vulnerability in Bash
Apple tonight released its patch for the Bash vulnerability, updating OS X Lion, Mountain Lion and Mavericks. Late Friday, Apple reassured Mac OS X users that most were protected by default, but nonetheless that it was working on a patch. The vulnerability in Bash, which stands for Bourne Again...
APPLE-SA-2014-08-13-1 Safari 6.1.6 and Safari 7.0.6
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-08-13-1 Safari 6.1.6 and Safari 7.0.6 Safari 6.1.6 and Safari 7.0.6 are now available and address the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.4 Impact...
Apple Releases Security Update for Safari
Apple has released security updates for Safari to address vulnerabilities which could allow an attacker to execute arbitrary code or cause an unexpected application termination. Updates include Safari 6.1.6 and Safari 7.0.6 for OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8...
APPLE-SA-2014-06-30-2 OS X Mavericks 10.9.4 and Security Update 2014-003
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-06-30-2 OS X Mavericks 10.9.4 and Security Update 2014-003 OS X Mavericks 10.9.4 and Security Update 2014-003 are now available and address the following: Certificate Trust Policy Available for: OS X Lion v10.7.5, OS X Lion Server v10.7....
Apple Mac OS X Lion Kernel <= xnu-1699.32.7 except xnu-1699.24.8 NFS Mount - Privilege Escalation Exploit
No description provided by source. / Apple Mac OS X Lion Kernel = xnu-1699.32.7 except xnu-1699.24.8 NFS Mount Privilege Escalation Exploit CVE None by Kenzley Alphonse kenzley dot alphonse at gmail dot com Notes: This exploit leverage a stack overflow vulnerability to escalate privileges. The...
APPLE-SA-2014-04-22-1 Security Update 2014-002
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-04-22-1 Security Update 2014-002 Security Update 2014-002 is now available and addresses the following: CFNetwork HTTPProtocol Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2...
Mac OS X NFS Mount Privilege Escalation Exploit
This exploit leverages a stack buffer overflow vulnerability to escalate privileges. The vulnerable function nfsconvertoldnfsargs does not verify the size of a user-provided argument before copying it to the stack. As a result, by passing a large size as an argument, a local user can overwrite th...
Apple Mac OSX (Lion) Kernel xnu-1699.32.7 except xnu-1699.24.8 NFS Mount - Local Privilege Escalation
/ Apple Mac OS X Lion Kernel Notes: This exploit leverage a stack overflow vulnerability to escalate privileges. The vulnerable function nfsconvertoldnfsargs does not verify the size of a user-provided argument before copying it to the stack. As a result by passing a large size, a local user can...
APPLE-SA-2014-04-01-1 Safari 6.1.3 and Safari 7.0.3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-04-01-1 Safari 6.1.3 and Safari 7.0.3 Safari 6.1.3 and Safari 7.0.3 are now available and address the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.2 Impact...
APPLE-SA-2014-02-25-2 Safari 6.1.2 and Safari 7.0.2
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-02-25-2 Safari 6.1.2 and Safari 7.0.2 Safari 6.1.2 and Safari 7.0.2 is now available and addresses the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.1 Impac...
WebKit未明内存破坏漏洞
Bugtraq ID:65780 CVE ID:CVE-2014-1269 WebKit是一款开放源代码的浏览器引擎。 Apple Safari 6.1.2和7.0.2之前版本所使用的WebKit存在一个未明的内存破坏漏洞,允许远程攻击者构建特制的HTML,诱使用户目标用户解析,可以应用程序上下文执行任意代码。 0 Mac OS X Lion v10.7.5 Mac OS X Lion Server v10.7.5 Mac OS X Mountain Lion v10.8.5 Mac OS X Mavericks v10.9.1 厂商补丁: Apple ----- Apple Safar...
APPLE-SA-2013-12-16-1 Safari 6.1.1 and Safari 7.0.1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-12-16-1 Safari 6.1.1 and Safari 7.0.1 Safari 6.1.1 and Safari 7.0.1 are now available and address the following: Safari Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5, OS X Mavericks v10.9 Impact:...
Apple Releases Security Update for Safari on OS X
Apple has released security updates for Safari 6.1 to address multiple vulnerabilities. These vulnerabilities could allow a remote attacker to execute arbitrary code, information disclosure, or a cross-site scripting condition. Safari 6.1 Webkit updates are available for the following versions: O...
APPLE-SA-2013-06-04-2 Safari 6.0.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-06-04-2 Safari 6.0.5 Safari 6.0.5 is now available and addresses the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.3 Impact: Visiting a maliciously crafted website may lead to an...
Apple Releases Security Update for Safari on OS X
Apple has released security updates for Safari 6.0.5 to address multiple vulnerabilities. These vulnerabilities could allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. Safari 6.0.5 WebKit updates are available for the following versions: OS X Lion v10.7.5 O...
APPLE-SA-2013-04-16-1 Safari 6.0.4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-04-16-1 Safari 6.0.4 Safari 6.0.4 is now available and addresses the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.3 Impact: Visiting a maliciously crafted website may lead to an...
Apple Releases Security Updates for Safari
Apple has released security updates for Safari 6.0.4 WebKit to address multiple vulnerabilities. These vulnerabilities could allow a remote attacker to execute arbitrary code or cause a denial-of-service condition. Safari 6.0.4 WebKit updates are available for the following versions: OS X Lion...
APPLE-SA-2013-03-14-2 Safari 6.0.3
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-03-14-2 Safari 6.0.3 Safari 6.0.3 is now available and addresses the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.2 Impact: Visiting a maliciously crafted website may lead to an...