jetlib.sec » Tags » apple-security

Feeds

260306 items (0 unread) in 27 feeds

• 0day.today (was: 1337day, Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

147 items tagged "apple security"

Related tags: memory [+], mac os x [+], mac os [+], information disclosure [+], information [+], code execution [+], certificate [+], Software [+], security advisory [+], x 509 [+], vulnerability [+], validation [+], security [+], script injection [+], information disclosure vulnerability [+], handling [+], desktop [+], colorsync [+], certificate chains [+], certificate chain [+], buffer overflow [+], apple remote desktop [+], apple remote [+], webkit [+], time [+], system privileges [+], corruption issues [+], conversion issue [+], cfnetwork [+], capsule [+], airport base [+], arbitrary code execution [+], xcode [+], x mountain [+], web [+], vulnerability issues [+], tv software [+], trust issue [+], time capsule [+], termination [+], start [+], ssl check [+], ssl [+], software update [+], security vulnerabilities [+], root certificates [+], root certificate [+], passbook [+], pages [+], opportunity [+], opening [+], multiple [+], mountain lion [+], microsoft word documents [+], microsoft word document [+], memory access [+], loading [+], libresolv [+], library [+], keychain [+], java web start [+], java version [+], java browser [+], integer overflow [+], http [+], freetype [+], execution [+], excel [+], encrypted connection [+], disclosure [+], diginotar [+], dhcp [+], defense in depth [+], default system [+], default browser [+], data security [+], corruption [+], corefoundation [+], connection [+], certificate authorities [+], calendar issues [+], buffer overflows [+], application firewall [+], application [+], apple software [+], apache [+], adobe website [+], adobe flash player [+], adobe [+], addresses issues [+], address [+], system [+], ssl 3 [+], shell metacharacters [+], shell [+], security vulnerability [+], meta characters [+], malware removal tool [+], malware [+], initialization routine [+], flashback [+], countermeasure [+], buffer [+], vulnerabilities [+], safari [+], ios [+], talk [+], leaves [+], iphone [+], g users [+], dino dai zovi [+], charlie miller [+], java [+], memory corruption [+], issue [+], apple [+], update [+], java sandbox [+], version [+], quicktime [+], apple tv [+], advisory [+], x lion [+], code [+], untrusted [+], applet [+]

• November 30, 2012
• 9:05

  Apple Security Advisory 2012-11-29-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-11-29-1 - Apple TV 5.1.1 is now available and addresses information disclosure and code execution vulnerabilities.

  Tags:  advisory disclosure information apple-security apple-tv code-execution information-disclosure  

• 9:05

  Apple Security Advisory 2012-11-29-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-11-29-1 - Apple TV 5.1.1 is now available and addresses information disclosure and code execution vulnerabilities.

  Tags:  advisory disclosure information apple-security apple-tv code-execution information-disclosure  

• 9:05

  Apple Security Advisory 2012-11-29-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-11-29-1 - Apple TV 5.1.1 is now available and addresses information disclosure and code execution vulnerabilities.

  Tags:  advisory disclosure information apple-security apple-tv code-execution information-disclosure  

• November 08, 2012
• 15:46

  Apple Security Advisory 2012-11-07-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-11-07-1 - QuickTime version 7.7.3 is now available and addresses multiple buffer overflows, memory corruption, and use after free vulnerabilities.

  Tags:  version advisory quicktime apple-security memory-corruption security-advisory buffer-overflows  

• 15:46

  Apple Security Advisory 2012-11-07-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-11-07-1 - QuickTime version 7.7.3 is now available and addresses multiple buffer overflows, memory corruption, and use after free vulnerabilities.

  Tags:  version advisory quicktime apple-security memory-corruption security-advisory buffer-overflows  

• 15:46

  Apple Security Advisory 2012-11-07-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-11-07-1 - QuickTime version 7.7.3 is now available and addresses multiple buffer overflows, memory corruption, and use after free vulnerabilities.

  Tags:  version advisory quicktime apple-security memory-corruption security-advisory buffer-overflows  

• November 02, 2012
• 16:14

  Apple Security Advisory 2012-11-01-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-11-01-2 - Safari 6.0.2 is now available and addresses multiple arbitrary code execution vulnerabilities.

  Tags:  advisory safari code apple-security arbitrary-code-execution security-advisory  

• 16:14

  Apple Security Advisory 2012-11-01-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-11-01-2 - Safari 6.0.2 is now available and addresses multiple arbitrary code execution vulnerabilities.

  Tags:  advisory safari code apple-security arbitrary-code-execution security-advisory  

• 16:14

  Apple Security Advisory 2012-11-01-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-11-01-2 - Safari 6.0.2 is now available and addresses multiple arbitrary code execution vulnerabilities.

  Tags:  advisory safari code apple-security arbitrary-code-execution security-advisory  

• 13:22

  Apple Security Advisory 2012-11-01-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-11-01-1 - iOS 6.0.1 is now available and addresses an information disclosure issue, a Passbook bypass, an arbitrary code execution vulnerability, and more.

  Tags:  ios advisory information apple-security arbitrary-code-execution information-disclosure passbook  

• 13:22

  Apple Security Advisory 2012-11-01-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-11-01-1 - iOS 6.0.1 is now available and addresses an information disclosure issue, a Passbook bypass, an arbitrary code execution vulnerability, and more.

  Tags:  ios advisory information apple-security arbitrary-code-execution information-disclosure passbook  

• 13:22

  Apple Security Advisory 2012-11-01-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-11-01-1 - iOS 6.0.1 is now available and addresses an information disclosure issue, a Passbook bypass, an arbitrary code execution vulnerability, and more.

  Tags:  ios advisory information apple-security arbitrary-code-execution information-disclosure passbook  

• October 16, 2012
• 12:22

  Apple Security Advisory 2012-10-16-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-10-16-1 - Multiple vulnerabilities exist in Java 1.6.0_35, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_37.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• 12:22

  Apple Security Advisory 2012-10-16-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-10-16-1 - Multiple vulnerabilities exist in Java 1.6.0_35, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_37.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• September 24, 2012
• 23:55

  Apple Security Advisory 2012-09-24-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-09-24-1 - Apple TV 5.1 is now available and addresses issues relating to malicious media loading, memory corruption, and more.

  Tags:  memory advisory loading apple-security memory-corruption apple-tv addresses-issues  

• 23:55

  Apple Security Advisory 2012-09-24-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-09-24-1 - Apple TV 5.1 is now available and addresses issues relating to malicious media loading, memory corruption, and more.

  Tags:  memory advisory loading apple-security memory-corruption apple-tv addresses-issues  

• 23:55

  Apple Security Advisory 2012-09-24-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-09-24-1 - Apple TV 5.1 is now available and addresses issues relating to malicious media loading, memory corruption, and more.

  Tags:  memory advisory loading apple-security memory-corruption apple-tv addresses-issues  

• September 21, 2012
• 23:33

  Apple Security Advisory 2012-09-19-3

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-09-19-3 - Safari 6.0.1 is now available and addresses multiple vulnerabilities in itself and WebKit.

  Tags:  advisory safari webkit apple-security security-advisory vulnerabilities  

• 23:33

  Apple Security Advisory 2012-09-19-3

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-09-19-3 - Safari 6.0.1 is now available and addresses multiple vulnerabilities in itself and WebKit.

  Tags:  advisory safari webkit apple-security security-advisory vulnerabilities  

• 23:33

  Apple Security Advisory 2012-09-19-3

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-09-19-3 - Safari 6.0.1 is now available and addresses multiple vulnerabilities in itself and WebKit.

  Tags:  advisory safari webkit apple-security security-advisory vulnerabilities  

• 23:30

  Apple Security Advisory 2012-09-19-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-09-19-2 - OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004 are now available and address Apache, BIND, CoreText, Data Security, and many other vulnerabilities.

  Tags:  advisory update apache apple-security x-lion x-mountain mountain-lion security-advisory data-security  

• 23:30

  Apple Security Advisory 2012-09-19-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-09-19-2 - OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004 are now available and address Apache, BIND, CoreText, Data Security, and many other vulnerabilities.

  Tags:  advisory update apache apple-security x-lion x-mountain mountain-lion security-advisory data-security  

• 23:30

  Apple Security Advisory 2012-09-19-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-09-19-2 - OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004 are now available and address Apache, BIND, CoreText, Data Security, and many other vulnerabilities.

  Tags:  advisory update apache apple-security x-lion x-mountain mountain-lion security-advisory data-security  

• 23:24

  Apple Security Advisory 2012-09-19-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-09-19-1 - iOS 6 is now available and addresses CFNetwork, CoreGraphics, CoreMedia, DHCP, and many other vulnerabilities.

  Tags:  ios advisory cfnetwork apple-security security-advisory dhcp vulnerabilities  

• 23:24

  Apple Security Advisory 2012-09-19-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-09-19-1 - iOS 6 is now available and addresses CFNetwork, CoreGraphics, CoreMedia, DHCP, and many other vulnerabilities.

  Tags:  ios advisory cfnetwork apple-security security-advisory dhcp vulnerabilities  

• 23:24

  Apple Security Advisory 2012-09-19-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-09-19-1 - iOS 6 is now available and addresses CFNetwork, CoreGraphics, CoreMedia, DHCP, and many other vulnerabilities.

  Tags:  ios advisory cfnetwork apple-security security-advisory dhcp vulnerabilities  

• September 18, 2012
• 8:59

  Apple Security Advisory 2012-09-17-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-09-17-1 - Apple Remote Desktop 3.5.3 is now available and addresses an information disclosure vulnerability.

  Tags:  desktop advisory information apple-remote apple-security apple-remote-desktop information-disclosure-vulnerability security-advisory  

• 8:59

  Apple Security Advisory 2012-09-17-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-09-17-1 - Apple Remote Desktop 3.5.3 is now available and addresses an information disclosure vulnerability.

  Tags:  desktop advisory information apple-remote apple-security apple-remote-desktop information-disclosure-vulnerability security-advisory  

• 8:59

  Apple Security Advisory 2012-09-17-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-09-17-1 - Apple Remote Desktop 3.5.3 is now available and addresses an information disclosure vulnerability.

  Tags:  desktop advisory information apple-remote apple-security apple-remote-desktop information-disclosure-vulnerability security-advisory  

• September 13, 2012
• 19:13

  Apple Security Advisory 2012-09-12-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-09-12-1 - iTunes 10.7 is now available and addresses multiple memory corruption issues in webkit.

  Tags:  memory advisory corruption apple-security corruption-issues memory-corruption security-advisory  

• 19:13

  Apple Security Advisory 2012-09-12-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-09-12-1 - iTunes 10.7 is now available and addresses multiple memory corruption issues in webkit.

  Tags:  memory advisory corruption apple-security corruption-issues memory-corruption security-advisory  

• 19:13

  Apple Security Advisory 2012-09-12-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-09-12-1 - iTunes 10.7 is now available and addresses multiple memory corruption issues in webkit.

  Tags:  memory advisory corruption apple-security corruption-issues memory-corruption security-advisory  

• September 05, 2012
• 18:54

  Apple Security Advisory 2012-09-05-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-09-05-1 - An opportunity for security-in-depth hardening is addressed by updating to Java version 1.6.0_35.

  Tags:  java advisory opportunity apple-security java-version security-advisory apple  

• 18:54

  Apple Security Advisory 2012-09-05-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-09-05-1 - An opportunity for security-in-depth hardening is addressed by updating to Java version 1.6.0_35.

  Tags:  java advisory opportunity apple-security java-version security-advisory apple  

• 18:54

  Apple Security Advisory 2012-09-05-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-09-05-1 - An opportunity for security-in-depth hardening is addressed by updating to Java version 1.6.0_35.

  Tags:  java advisory opportunity apple-security java-version security-advisory apple  

• August 20, 2012
• 16:23

  Apple Security Advisory 2012-08-20-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-08-20-1 - Apple Remote Desktop 3.6.1 is now available and addresses a failed encrypted connection that may result in an information disclosure vulnerability.

  Tags:  desktop advisory connection apple-remote apple-security apple-remote-desktop information-disclosure-vulnerability encrypted-connection  

• 16:23

  Apple Security Advisory 2012-08-20-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-08-20-1 - Apple Remote Desktop 3.6.1 is now available and addresses a failed encrypted connection that may result in an information disclosure vulnerability.

  Tags:  desktop advisory connection apple-remote apple-security apple-remote-desktop information-disclosure-vulnerability encrypted-connection  

• 16:23

  Apple Security Advisory 2012-08-20-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-08-20-1 - Apple Remote Desktop 3.6.1 is now available and addresses a failed encrypted connection that may result in an information disclosure vulnerability.

  Tags:  desktop advisory connection apple-remote apple-security apple-remote-desktop information-disclosure-vulnerability encrypted-connection  

• July 26, 2012
• 17:13

  Apple Security Advisory 2012-07-25-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-07-25-2 - Xcode 4.4 is now available and addresses SSL and keychain access vulnerabilities.

  Tags:  advisory xcode ssl apple-security security-advisory keychain  

• 17:13

  Apple Security Advisory 2012-07-25-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-07-25-2 - Xcode 4.4 is now available and addresses SSL and keychain access vulnerabilities.

  Tags:  advisory xcode ssl apple-security security-advisory keychain  

• 17:13

  Apple Security Advisory 2012-07-25-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-07-25-2 - Xcode 4.4 is now available and addresses SSL and keychain access vulnerabilities.

  Tags:  advisory xcode ssl apple-security security-advisory keychain  

• July 25, 2012
• 16:01

  Apple Security Advisory 2012-07-25-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-07-25-1 - A cross-site scripting issue existed in the handling of feed:// URLs in Safari. An autocomplete flaw was also fixed in Safari. Various other Safari issues have also been addressed. Webkit had code execution, cross origin, access control, and various other vulnerability issues addressed.

  Tags:  advisory safari issue apple-security vulnerability-issues code-execution security-advisory  

• 16:01

  Apple Security Advisory 2012-07-25-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-07-25-1 - A cross-site scripting issue existed in the handling of feed:// URLs in Safari. An autocomplete flaw was also fixed in Safari. Various other Safari issues have also been addressed. Webkit had code execution, cross origin, access control, and various other vulnerability issues addressed.

  Tags:  advisory safari issue apple-security vulnerability-issues code-execution security-advisory  

• 16:01

  Apple Security Advisory 2012-07-25-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-07-25-1 - A cross-site scripting issue existed in the handling of feed:// URLs in Safari. An autocomplete flaw was also fixed in Safari. Various other Safari issues have also been addressed. Webkit had code execution, cross origin, access control, and various other vulnerability issues addressed.

  Tags:  advisory safari issue apple-security vulnerability-issues code-execution security-advisory  

• June 13, 2012
• 16:29

  Apple Security Advisory 2012-06-12-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-06-12-1 - Multiple vulnerabilities exist in Java, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_33.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• June 12, 2012
• 15:20

  Apple Security Advisory 2012-06-11-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-06-11-1 - iTunes 10.6.3 is now available and addresses multiple issues. Importing a maliciously crafted .m3u playlist may lead to an unexpected application termination or arbitrary code execution Description: A heap buffer overflow existed in the handling of .m3u playlists. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: A memory corruption issue existed in WebKit.

  Tags:  advisory application termination apple-security arbitrary-code-execution memory-corruption buffer-overflow  

• 15:20

  Apple Security Advisory 2012-06-11-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-06-11-1 - iTunes 10.6.3 is now available and addresses multiple issues. Importing a maliciously crafted .m3u playlist may lead to an unexpected application termination or arbitrary code execution Description: A heap buffer overflow existed in the handling of .m3u playlists. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: A memory corruption issue existed in WebKit.

  Tags:  advisory application termination apple-security arbitrary-code-execution memory-corruption buffer-overflow  

• 15:20

  Apple Security Advisory 2012-06-11-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-06-11-1 - iTunes 10.6.3 is now available and addresses multiple issues. Importing a maliciously crafted .m3u playlist may lead to an unexpected application termination or arbitrary code execution Description: A heap buffer overflow existed in the handling of .m3u playlists. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution Description: A memory corruption issue existed in WebKit.

  Tags:  advisory application termination apple-security arbitrary-code-execution memory-corruption buffer-overflow  

• May 16, 2012
• 16:16

  Apple Security Advisory 2012-05-15-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-05-15-1 - QuickTime 7.7.2 is now available and addresses multiple security issues. Multiple stack overflows existed in QuickTime's handling of TeXML files. A heap overflow existed in QuickTime's handling of text tracks. A heap buffer overflow existed in the handling of H.264 encoded movie files. An uninitialized memory access issue existed in the handling of MP4 encoded files. For OS X Lion systems, this issue is addressed in OS X Lion v10.7.3. For Mac OS X v10.6 systems, this issue is addressed in Security Update 2012-001. Various other issues were also addressed.

  Tags:  handling issue quicktime mac-os apple-security x-lion mac-os-x buffer-overflow memory-access  

• 16:16

  Apple Security Advisory 2012-05-15-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-05-15-1 - QuickTime 7.7.2 is now available and addresses multiple security issues. Multiple stack overflows existed in QuickTime's handling of TeXML files. A heap overflow existed in QuickTime's handling of text tracks. A heap buffer overflow existed in the handling of H.264 encoded movie files. An uninitialized memory access issue existed in the handling of MP4 encoded files. For OS X Lion systems, this issue is addressed in OS X Lion v10.7.3. For Mac OS X v10.6 systems, this issue is addressed in Security Update 2012-001. Various other issues were also addressed.

  Tags:  handling issue quicktime mac-os apple-security x-lion mac-os-x buffer-overflow memory-access  

• 16:16

  Apple Security Advisory 2012-05-15-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-05-15-1 - QuickTime 7.7.2 is now available and addresses multiple security issues. Multiple stack overflows existed in QuickTime's handling of TeXML files. A heap overflow existed in QuickTime's handling of text tracks. A heap buffer overflow existed in the handling of H.264 encoded movie files. An uninitialized memory access issue existed in the handling of MP4 encoded files. For OS X Lion systems, this issue is addressed in OS X Lion v10.7.3. For Mac OS X v10.6 systems, this issue is addressed in Security Update 2012-001. Various other issues were also addressed.

  Tags:  handling issue quicktime mac-os apple-security x-lion mac-os-x buffer-overflow memory-access  

• May 15, 2012
• 15:26

  Apple Security Advisory 2012-05-14-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-05-14-2 - This update disables Adobe Flash Player if it is older than 10.1.102.64 by moving its files to a new directory. This update presents the option to install an updated version of Flash Player from the Adobe website.

  Tags:  advisory adobe update apple-security adobe-flash-player adobe-website security-advisory  

• 15:26

  Apple Security Advisory 2012-05-14-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-05-14-2 - This update disables Adobe Flash Player if it is older than 10.1.102.64 by moving its files to a new directory. This update presents the option to install an updated version of Flash Player from the Adobe website.

  Tags:  advisory adobe update apple-security adobe-flash-player adobe-website security-advisory  

• 15:26

  Apple Security Advisory 2012-05-14-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-05-14-2 - This update disables Adobe Flash Player if it is older than 10.1.102.64 by moving its files to a new directory. This update presents the option to install an updated version of Flash Player from the Adobe website.

  Tags:  advisory adobe update apple-security adobe-flash-player adobe-website security-advisory  

• 15:14

  Apple Security Advisory 2012-05-14-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-05-14-1 - This update runs a malware removal tool that will remove the most common variants of the Flashback malware. If the Flashback malware is found, it presents a dialog notifying the user that malware was removed. There is no indication to the user if malware is not found.

  Tags:  malware advisory flashback apple-security malware-removal-tool security-advisory  

• 15:14

  Apple Security Advisory 2012-05-14-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-05-14-1 - This update runs a malware removal tool that will remove the most common variants of the Flashback malware. If the Flashback malware is found, it presents a dialog notifying the user that malware was removed. There is no indication to the user if malware is not found.

  Tags:  malware advisory flashback apple-security malware-removal-tool security-advisory  

• May 10, 2012
• 8:24

  Apple Security Advisory 2012-05-09-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-05-09-2 - Safari 5.1.7 is now available and addresses multiple WebKit related vulnerabilities.

  Tags:  advisory safari webkit apple-security security-advisory vulnerabilities  

• 8:24

  Apple Security Advisory 2012-05-09-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-05-09-2 - Safari 5.1.7 is now available and addresses multiple WebKit related vulnerabilities.

  Tags:  advisory safari webkit apple-security security-advisory vulnerabilities  

• 8:19

  Apple Security Advisory 2012-05-09-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-05-09-1 - OS X Lion v10.7.4 and Security Update 2012-002 is now available and addresses multiple security issues. An issue existed in the handling of network account logins. The login process recorded sensitive information in the system log, where other users of the system could read it. A temporary file race condition issue existed in blued's initialization routine. There are known attacks on the confidentiality of SSL 3.0 and TLS 1.0 when a cipher suite uses a block cipher in CBC mode. curl disabled the 'empty fragment' countermeasure which prevented these attacks. This issue is addressed by enabling empty fragments. A data injection issue existed in curl's handling of URLs. This issue is addressed through improved validation of URLs. This issue does not affect systems prior to OS X Lion. Various other vulnerabilities have been addressed.

  Tags:  advisory issue system apple-security x-lion initialization-routine ssl-3 countermeasure  

• 8:19

  Apple Security Advisory 2012-05-09-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-05-09-1 - OS X Lion v10.7.4 and Security Update 2012-002 is now available and addresses multiple security issues. An issue existed in the handling of network account logins. The login process recorded sensitive information in the system log, where other users of the system could read it. A temporary file race condition issue existed in blued's initialization routine. There are known attacks on the confidentiality of SSL 3.0 and TLS 1.0 when a cipher suite uses a block cipher in CBC mode. curl disabled the 'empty fragment' countermeasure which prevented these attacks. This issue is addressed by enabling empty fragments. A data injection issue existed in curl's handling of URLs. This issue is addressed through improved validation of URLs. This issue does not affect systems prior to OS X Lion. Various other vulnerabilities have been addressed.

  Tags:  advisory issue system apple-security x-lion initialization-routine ssl-3 countermeasure  

• April 13, 2012
• 15:07

  Apple Security Advisory 2012-04-12-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-04-12-1 - Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8 is now available. As a security hardening measure, the Java browser plugin and Java Web Start are deactivated if they are unused for 35 days. Installing this update will automatically deactivate the Java browser plugin and Java Web Start. Users may re-enable Java if they encounter Java applets on a web page or Java Web Start applications.

  Tags:  java web start mac-os apple-security java-web-start mac-os-x java-browser  

• 15:07

  Apple Security Advisory 2012-04-12-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-04-12-1 - Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8 is now available. As a security hardening measure, the Java browser plugin and Java Web Start are deactivated if they are unused for 35 days. Installing this update will automatically deactivate the Java browser plugin and Java Web Start. Users may re-enable Java if they encounter Java applets on a web page or Java Web Start applications.

  Tags:  java web start mac-os apple-security java-web-start mac-os-x java-browser  

• 15:07

  Apple Security Advisory 2012-04-12-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-04-12-1 - Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8 is now available. As a security hardening measure, the Java browser plugin and Java Web Start are deactivated if they are unused for 35 days. Installing this update will automatically deactivate the Java browser plugin and Java Web Start. Users may re-enable Java if they encounter Java applets on a web page or Java Web Start applications.

  Tags:  java web start mac-os apple-security java-web-start mac-os-x java-browser  

• April 04, 2012
• 18:14

  Apple Security Advisory 2012-04-03-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-04-03-1 - Java for OS X 2012-001 and Java for Mac OS X 10.6 Update 7 is now available. It addresses multiple vulnerabilities that exist in Java 1.6.0_29, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox.

  Tags:  java advisory update mac-os apple-security java-sandbox mac-os-x security-advisory  

• 18:14

  Apple Security Advisory 2012-04-03-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-04-03-1 - Java for OS X 2012-001 and Java for Mac OS X 10.6 Update 7 is now available. It addresses multiple vulnerabilities that exist in Java 1.6.0_29, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox.

  Tags:  java advisory update mac-os apple-security java-sandbox mac-os-x security-advisory  

• 18:14

  Apple Security Advisory 2012-04-03-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-04-03-1 - Java for OS X 2012-001 and Java for Mac OS X 10.6 Update 7 is now available. It addresses multiple vulnerabilities that exist in Java 1.6.0_29, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox.

  Tags:  java advisory update mac-os apple-security java-sandbox mac-os-x security-advisory  

• March 12, 2012
• 17:58

  Apple Security Advisory 2012-03-12-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-03-12-1 - Safari version 5.1.4 is now available and addresses 84 different vulnerabilities. This includes many fixes for WebKit related issues.

  Tags:  version advisory safari apple-security security-advisory apple  

• 17:58

  Apple Security Advisory 2012-03-12-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-03-12-1 - Safari version 5.1.4 is now available and addresses 84 different vulnerabilities. This includes many fixes for WebKit related issues.

  Tags:  version advisory safari apple-security security-advisory apple  

• 17:58

  Apple Security Advisory 2012-03-12-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-03-12-1 - Safari version 5.1.4 is now available and addresses 84 different vulnerabilities. This includes many fixes for WebKit related issues.

  Tags:  version advisory safari apple-security security-advisory apple  

• March 08, 2012
• 14:23

  Apple Security Advisory 2012-03-07-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-03-07-2 - iOS 5.1 Software Update is now available and addresses 81 vulnerabilities.

  Tags:  ios advisory Software apple-security security-advisory software-update vulnerabilities  

• 14:23

  Apple Security Advisory 2012-03-07-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-03-07-2 - iOS 5.1 Software Update is now available and addresses 81 vulnerabilities.

  Tags:  ios advisory Software apple-security security-advisory software-update vulnerabilities  

• 14:23

  Apple Security Advisory 2012-03-07-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-03-07-2 - iOS 5.1 Software Update is now available and addresses 81 vulnerabilities.

  Tags:  ios advisory Software apple-security security-advisory software-update vulnerabilities  

• 14:22

  Apple Security Advisory 2012-03-07-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-03-07-1 - iTunes 10.6 is now available and addresses 72 vulnerabilities.

  Tags:  advisory apple-security security-advisory vulnerabilities apple  

• 14:22

  Apple Security Advisory 2012-03-07-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-03-07-1 - iTunes 10.6 is now available and addresses 72 vulnerabilities.

  Tags:  advisory apple-security security-advisory vulnerabilities apple  

• 14:22

  Apple Security Advisory 2012-03-07-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-03-07-1 - iTunes 10.6 is now available and addresses 72 vulnerabilities.

  Tags:  advisory apple-security security-advisory vulnerabilities apple  

• 11:22

  Apple Security Advisory 2012-03-07-3

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-03-07-3 - Apple TV 5.0 is now available and addresses a libresolv library vulnerability that could lead to an unexpected application termination or arbitrary code execution.

  Tags:  advisory libresolv library apple-security arbitrary-code-execution apple-tv security-advisory  

• 11:22

  Apple Security Advisory 2012-03-07-3

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-03-07-3 - Apple TV 5.0 is now available and addresses a libresolv library vulnerability that could lead to an unexpected application termination or arbitrary code execution.

  Tags:  advisory libresolv library apple-security arbitrary-code-execution apple-tv security-advisory  

• 11:22

  Apple Security Advisory 2012-03-07-3

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-03-07-3 - Apple TV 5.0 is now available and addresses a libresolv library vulnerability that could lead to an unexpected application termination or arbitrary code execution.

  Tags:  advisory libresolv library apple-security arbitrary-code-execution apple-tv security-advisory  

• February 02, 2012
• 16:24

  Apple Security Advisory 2012-02-01-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2012-02-01-1 - Apple has addressed 48 security vulnerabilities. These issues existed in packages such as Address Book, Apache, CFNetwork, ColorSync, CoreAudio, CoreMedia, CoreText, curl and much more.

  Tags:  advisory security address apple-security colorsync security-advisory security-vulnerabilities  

• 16:24

  Apple Security Advisory 2012-02-01-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2012-02-01-1 - Apple has addressed 48 security vulnerabilities. These issues existed in packages such as Address Book, Apache, CFNetwork, ColorSync, CoreAudio, CoreMedia, CoreText, curl and much more.

  Tags:  advisory security address apple-security colorsync security-advisory security-vulnerabilities  

• 16:24

  Apple Security Advisory 2012-02-01-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2012-02-01-1 - Apple has addressed 48 security vulnerabilities. These issues existed in packages such as Address Book, Apache, CFNetwork, ColorSync, CoreAudio, CoreMedia, CoreText, curl and much more.

  Tags:  advisory security address apple-security colorsync security-advisory security-vulnerabilities  

• November 15, 2011
• 20:35

  Apple Security Advisory 2011-11-14-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-11-14-1 - iTunes 10.5.1 is now available and addresses a man-in-the-middle vulnerability. iTunes periodically checks for software updates using an HTTP request to Apple. This request may cause iTunes to indicate that an update is available. If Apple Software Update for Windows is not installed, clicking the Download iTunes button may open the URL from the HTTP response in the user's default browser. This issue has been mitigated by using a secured connection when checking for available updates. For OS X systems, the user's default browser is not used because Apple Software Update is included with OS X, however this change adds additional defense-in-depth.

  Tags:  advisory http update apple-security apple-software default-browser defense-in-depth  

• 20:35

  Apple Security Advisory 2011-11-14-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-11-14-1 - iTunes 10.5.1 is now available and addresses a man-in-the-middle vulnerability. iTunes periodically checks for software updates using an HTTP request to Apple. This request may cause iTunes to indicate that an update is available. If Apple Software Update for Windows is not installed, clicking the Download iTunes button may open the URL from the HTTP response in the user's default browser. This issue has been mitigated by using a secured connection when checking for available updates. For OS X systems, the user's default browser is not used because Apple Software Update is included with OS X, however this change adds additional defense-in-depth.

  Tags:  advisory http update apple-security apple-software default-browser defense-in-depth  

• 20:35

  Apple Security Advisory 2011-11-14-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-11-14-1 - iTunes 10.5.1 is now available and addresses a man-in-the-middle vulnerability. iTunes periodically checks for software updates using an HTTP request to Apple. This request may cause iTunes to indicate that an update is available. If Apple Software Update for Windows is not installed, clicking the Download iTunes button may open the URL from the HTTP response in the user's default browser. This issue has been mitigated by using a secured connection when checking for available updates. For OS X systems, the user's default browser is not used because Apple Software Update is included with OS X, however this change adds additional defense-in-depth.

  Tags:  advisory http update apple-security apple-software default-browser defense-in-depth  

• November 14, 2011
• 21:14

  Apple Security Advisory 2011-11-10-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-11-10-2 - Time Capsule and AirPort Base Station (802.11n) Firmware 7.6 is now available and addresses a security vulnerability. dhclient allowed remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message. This issue is addressed by stripping shell meta-characters in dhclient-script.

  Tags:  advisory time shell apple-security capsule airport-base shell-metacharacters meta-characters security-vulnerability  

• 21:14

  Apple Security Advisory 2011-11-10-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-11-10-2 - Time Capsule and AirPort Base Station (802.11n) Firmware 7.6 is now available and addresses a security vulnerability. dhclient allowed remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message. This issue is addressed by stripping shell meta-characters in dhclient-script.

  Tags:  advisory time shell apple-security capsule airport-base shell-metacharacters meta-characters security-vulnerability  

• 21:08

  Apple Security Advisory 2011-11-10-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-11-10-1 - The new iOS 5.0.1 software update addresses multiple vulnerabilities. An issue existed in CFNetwork's handling of maliciously crafted URLs. When accessing a maliciously crafted HTTP or HTTPS URL, CFNetwork could navigate to an incorrect server. Multiple memory corruption issues existed in FreeType, the most serious of which may lead to arbitrary code execution when processing a maliciously crafted font. Various other issues were also addressed.

  Tags:  ios advisory cfnetwork apple-security arbitrary-code-execution corruption-issues memory-corruption  

• 21:08

  Apple Security Advisory 2011-11-10-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-11-10-1 - The new iOS 5.0.1 software update addresses multiple vulnerabilities. An issue existed in CFNetwork's handling of maliciously crafted URLs. When accessing a maliciously crafted HTTP or HTTPS URL, CFNetwork could navigate to an incorrect server. Multiple memory corruption issues existed in FreeType, the most serious of which may lead to arbitrary code execution when processing a maliciously crafted font. Various other issues were also addressed.

  Tags:  ios advisory cfnetwork apple-security arbitrary-code-execution corruption-issues memory-corruption  

• November 09, 2011
• 10:31

  Apple Security Advisory 2011-11-08-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-11-08-1 - Multiple vulnerabilities exist in Java 1.6.0_26, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_29.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• 10:31

  Apple Security Advisory 2011-11-08-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-11-08-1 - Multiple vulnerabilities exist in Java 1.6.0_26, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_29.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• October 28, 2011
• 14:11

  Apple Security Advisory 2011-10-26-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-26-1 - QuickTime 7.7.1 is now available and addresses memory disclosure, arbitrary code execution, script injection, and various other vulnerabilities.

  Tags:  memory advisory quicktime apple-security arbitrary-code-execution script-injection security-advisory  

• 14:11

  Apple Security Advisory 2011-10-26-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-26-1 - QuickTime 7.7.1 is now available and addresses memory disclosure, arbitrary code execution, script injection, and various other vulnerabilities.

  Tags:  memory advisory quicktime apple-security arbitrary-code-execution script-injection security-advisory  

• 14:11

  Apple Security Advisory 2011-10-26-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-26-1 - QuickTime 7.7.1 is now available and addresses memory disclosure, arbitrary code execution, script injection, and various other vulnerabilities.

  Tags:  memory advisory quicktime apple-security arbitrary-code-execution script-injection security-advisory  

• October 12, 2011
• 19:45

  Apple Security Advisory 2011-10-12-6

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-12-6 - Numbers for iOS version 1.5 is now available and addresses multiple arbitrary code execution vulnerabilities.

  Tags:  version ios advisory apple-security arbitrary-code-execution security-advisory apple  

• 19:45

  Apple Security Advisory 2011-10-12-6

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-12-6 - Numbers for iOS version 1.5 is now available and addresses multiple arbitrary code execution vulnerabilities.

  Tags:  version ios advisory apple-security arbitrary-code-execution security-advisory apple  

• 19:45

  Apple Security Advisory 2011-10-12-6

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-12-6 - Numbers for iOS version 1.5 is now available and addresses multiple arbitrary code execution vulnerabilities.

  Tags:  version ios advisory apple-security arbitrary-code-execution security-advisory apple  

• 19:42

  Apple Security Advisory 2011-10-12-5

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-12-5 - Pages for iOS version 1.5 is now available and addresses an arbitrary code execution vulnerability.

  Tags:  ios advisory pages apple-security arbitrary-code-execution security-advisory vulnerability  

• 19:42

  Apple Security Advisory 2011-10-12-5

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-12-5 - Pages for iOS version 1.5 is now available and addresses an arbitrary code execution vulnerability.

  Tags:  ios advisory pages apple-security arbitrary-code-execution security-advisory vulnerability  

• 19:42

  Apple Security Advisory 2011-10-12-5

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-12-5 - Pages for iOS version 1.5 is now available and addresses an arbitrary code execution vulnerability.

  Tags:  ios advisory pages apple-security arbitrary-code-execution security-advisory vulnerability  

• 19:39

  Apple Security Advisory 2011-10-12-4

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-12-4 - Safari version 5.1.1 is now available and addresses a directory traversal issue, a policy issue, various arbitrary code execution issues, and 40+ other vulnerabilities.

  Tags:  advisory safari issue apple-security arbitrary-code-execution security-advisory vulnerabilities  

• 19:39

  Apple Security Advisory 2011-10-12-4

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-12-4 - Safari version 5.1.1 is now available and addresses a directory traversal issue, a policy issue, various arbitrary code execution issues, and 40+ other vulnerabilities.

  Tags:  advisory safari issue apple-security arbitrary-code-execution security-advisory vulnerabilities  

• 19:39

  Apple Security Advisory 2011-10-12-4

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-12-4 - Safari version 5.1.1 is now available and addresses a directory traversal issue, a policy issue, various arbitrary code execution issues, and 40+ other vulnerabilities.

  Tags:  advisory safari issue apple-security arbitrary-code-execution security-advisory vulnerabilities  

• 19:35

  Apple Security Advisory 2011-10-12-3

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-12-3 - OS X Lion has a security update available that addresses findings in Apache, a format string vulnerability in the Application Firewall, an arbitrary code execution vulnerability when viewing a malicious font via ATS, and 60+ other issues.

  Tags:  advisory security vulnerability apple-security x-lion arbitrary-code-execution application-firewall security-advisory  

• 19:35

  Apple Security Advisory 2011-10-12-3

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-12-3 - OS X Lion has a security update available that addresses findings in Apache, a format string vulnerability in the Application Firewall, an arbitrary code execution vulnerability when viewing a malicious font via ATS, and 60+ other issues.

  Tags:  advisory security vulnerability apple-security x-lion arbitrary-code-execution application-firewall security-advisory  

• 19:35

  Apple Security Advisory 2011-10-12-3

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-12-3 - OS X Lion has a security update available that addresses findings in Apache, a format string vulnerability in the Application Firewall, an arbitrary code execution vulnerability when viewing a malicious font via ATS, and 60+ other issues.

  Tags:  advisory security vulnerability apple-security x-lion arbitrary-code-execution application-firewall security-advisory  

• 19:32

  Apple Security Advisory 2011-10-12-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-12-2 - An Apple TV software update is now available and addresses credential interception, spoofing, information disclosure, and various other vulnerabilities.

  Tags:  advisory Software update apple-security apple-tv information-disclosure tv-software  

• 19:32

  Apple Security Advisory 2011-10-12-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-12-2 - An Apple TV software update is now available and addresses credential interception, spoofing, information disclosure, and various other vulnerabilities.

  Tags:  advisory Software update apple-security apple-tv information-disclosure tv-software  

• 19:32

  Apple Security Advisory 2011-10-12-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-12-2 - An Apple TV software update is now available and addresses credential interception, spoofing, information disclosure, and various other vulnerabilities.

  Tags:  advisory Software update apple-security apple-tv information-disclosure tv-software  

• 19:28

  Apple Security Advisory 2011-10-12-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-12-1 - An iOS 5 software update is now available. It addresses an SSL check in CalDAV, a script injection issue in Calendar, issues in CFNetwork, and 90+ other security issues.

  Tags:  ios advisory Software apple-security calendar-issues ssl-check script-injection  

• 19:28

  Apple Security Advisory 2011-10-12-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-12-1 - An iOS 5 software update is now available. It addresses an SSL check in CalDAV, a script injection issue in Calendar, issues in CFNetwork, and 90+ other security issues.

  Tags:  ios advisory Software apple-security calendar-issues ssl-check script-injection  

• 19:28

  Apple Security Advisory 2011-10-12-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-12-1 - An iOS 5 software update is now available. It addresses an SSL check in CalDAV, a script injection issue in Calendar, issues in CFNetwork, and 90+ other security issues.

  Tags:  ios advisory Software apple-security calendar-issues ssl-check script-injection  

• October 11, 2011
• 19:01

  Apple Security Advisory 2011-10-11-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-10-11-1 - iTunes 10.5 has been released and addresses CoreFoundation, ColorSync, CoreAudio, CoreMedia, ImageIO, WebKit, and various other vulnerabilities.

  Tags:  advisory colorsync corefoundation apple-security security-advisory vulnerabilities apple  

• 19:01

  Apple Security Advisory 2011-10-11-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-10-11-1 - iTunes 10.5 has been released and addresses CoreFoundation, ColorSync, CoreAudio, CoreMedia, ImageIO, WebKit, and various other vulnerabilities.

  Tags:  advisory colorsync corefoundation apple-security security-advisory vulnerabilities apple  

• 19:01

  Apple Security Advisory 2011-10-11-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-10-11-1 - iTunes 10.5 has been released and addresses CoreFoundation, ColorSync, CoreAudio, CoreMedia, ImageIO, WebKit, and various other vulnerabilities.

  Tags:  advisory colorsync corefoundation apple-security security-advisory vulnerabilities apple  

• September 09, 2011
• 18:00

  Apple Security Advisory 2011-09-09-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-09-09-1 - Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar's certificates, including those issued by other authorities, are not trusted.

  Tags:  advisory diginotar certificate apple-security root-certificates certificate-authorities default-system  

• 18:00

  Apple Security Advisory 2011-09-09-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-09-09-1 - Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar's certificates, including those issued by other authorities, are not trusted.

  Tags:  advisory diginotar certificate apple-security root-certificates certificate-authorities default-system  

• 18:00

  Apple Security Advisory 2011-09-09-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-09-09-1 - Fraudulent certificates were issued by multiple certificate authorities operated by DigiNotar. This issue is addressed by removing DigiNotar from the list of trusted root certificates, from the list of Extended Validation (EV) certificate authorities, and by configuring default system trust settings so that DigiNotar's certificates, including those issued by other authorities, are not trusted.

  Tags:  advisory diginotar certificate apple-security root-certificates certificate-authorities default-system  

• August 04, 2011
• 16:11

  Apple Security Advisory 2011-08-03-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-08-03-1 - QuickTime version 7.7 has been made available to address multiple code execution, cross-origin, integer overflow, memory corruption, and other vulnerabilities.

  Tags:  version advisory quicktime apple-security memory-corruption integer-overflow code-execution  

• 16:11

  Apple Security Advisory 2011-08-03-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-08-03-1 - QuickTime version 7.7 has been made available to address multiple code execution, cross-origin, integer overflow, memory corruption, and other vulnerabilities.

  Tags:  version advisory quicktime apple-security memory-corruption integer-overflow code-execution  

• 16:11

  Apple Security Advisory 2011-08-03-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-08-03-1 - QuickTime version 7.7 has been made available to address multiple code execution, cross-origin, integer overflow, memory corruption, and other vulnerabilities.

  Tags:  version advisory quicktime apple-security memory-corruption integer-overflow code-execution  

• July 25, 2011
• 12:58

  Apple Security Advisory 2011-07-25-1

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-07-25-1 - A certificate chain validation issue existed in the handling of X.509 certificates. An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains. The iOS 4.3.5 software update addresses this issue.

  Tags:  issue validation certificate apple-security certificate-chains x-509 certificate-chain  

• 12:58

  Apple Security Advisory 2011-07-25-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-07-25-1 - A certificate chain validation issue existed in the handling of X.509 certificates. An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains. The iOS 4.3.5 software update addresses this issue.

  Tags:  issue validation certificate apple-security certificate-chains x-509 certificate-chain  

• 12:58

  Apple Security Advisory 2011-07-25-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-07-25-1 - A certificate chain validation issue existed in the handling of X.509 certificates. An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains. The iOS 4.3.5 software update addresses this issue.

  Tags:  issue validation certificate apple-security certificate-chains x-509 certificate-chain  

• 12:55

  Apple Security Advisory 2011-07-25-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-07-25-2 - The iOS 4.2.10 software update addresses a certificate chain validation issue. The issue existed in the handling of X.509 certificates where an attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains.

  Tags:  issue validation certificate apple-security certificate-chains x-509 certificate-chain  

• 12:55

  Apple Security Advisory 2011-07-25-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-07-25-2 - The iOS 4.2.10 software update addresses a certificate chain validation issue. The issue existed in the handling of X.509 certificates where an attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains.

  Tags:  issue validation certificate apple-security certificate-chains x-509 certificate-chain  

• 12:55

  Apple Security Advisory 2011-07-25-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-07-25-2 - The iOS 4.2.10 software update addresses a certificate chain validation issue. The issue existed in the handling of X.509 certificates where an attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS. Other attacks involving X.509 certificate validation may also be possible. This issue is addressed through improved validation of X.509 certificate chains.

  Tags:  issue validation certificate apple-security certificate-chains x-509 certificate-chain  

• 12:31

  Apple Security Advisory 2011-07-20-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-07-20-2 - An iWork 9.1 update addresses multiple security issues. A buffer overflow existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of Microsoft Word documents. Opening a maliciously crafted Microsoft Word document in Pages may lead to an unexpected application termination or arbitrary code execution.

  Tags:  handling excel opening apple-security arbitrary-code-execution microsoft-word-documents microsoft-word-document  

• 12:31

  Apple Security Advisory 2011-07-20-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-07-20-2 - An iWork 9.1 update addresses multiple security issues. A buffer overflow existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of Microsoft Word documents. Opening a maliciously crafted Microsoft Word document in Pages may lead to an unexpected application termination or arbitrary code execution.

  Tags:  handling excel opening apple-security arbitrary-code-execution microsoft-word-documents microsoft-word-document  

• 12:31

  Apple Security Advisory 2011-07-20-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-07-20-2 - An iWork 9.1 update addresses multiple security issues. A buffer overflow existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of Excel files. Opening a maliciously crafted Excel file in Numbers may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of Microsoft Word documents. Opening a maliciously crafted Microsoft Word document in Pages may lead to an unexpected application termination or arbitrary code execution.

  Tags:  handling excel opening apple-security arbitrary-code-execution microsoft-word-documents microsoft-word-document  

• July 21, 2011
• 7:16

  Safari 5.1 / 5.0.6 XSS / Code Execution / SSL Trust Issue

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-07-20-1 - A large amount of security issues have been addressed in Safari versions 5.1 and 5.0.6. These range from cross site scripting, possible arbitrary code execution, accidental trust in a disable root certificate, buffer and integer overflows, and more.

  Tags:  code safari execution apple-security arbitrary-code-execution trust-issue root-certificate  

• 7:16

  Safari 5.1 / 5.0.6 XSS / Code Execution / SSL Trust Issue

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-07-20-1 - A large amount of security issues have been addressed in Safari versions 5.1 and 5.0.6. These range from cross site scripting, possible arbitrary code execution, accidental trust in a disable root certificate, buffer and integer overflows, and more.

  Tags:  code safari execution apple-security arbitrary-code-execution trust-issue root-certificate  

• 7:16

  Safari 5.1 / 5.0.6 XSS / Code Execution / SSL Trust Issue

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-07-20-1 - A large amount of security issues have been addressed in Safari versions 5.1 and 5.0.6. These range from cross site scripting, possible arbitrary code execution, accidental trust in a disable root certificate, buffer and integer overflows, and more.

  Tags:  code safari execution apple-security arbitrary-code-execution trust-issue root-certificate  

• July 18, 2011
• 7:19

  Apple Security Advisory 2011-07-15-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-07-15-2 - A buffer overflow exists in FreeType's handling of TrueType font files. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. A signedness issue exists in FreeType's handling of Type 1 fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. An invalid type conversion issue exists in the use of IOMobileFrameBuffer queueing primitives, which may allow malicious code running as the user to gain system privileges.

  Tags:  advisory code freetype apple-security arbitrary-code-execution conversion-issue system-privileges  

• 7:19

  Apple Security Advisory 2011-07-15-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-07-15-2 - A buffer overflow exists in FreeType's handling of TrueType font files. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. A signedness issue exists in FreeType's handling of Type 1 fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. An invalid type conversion issue exists in the use of IOMobileFrameBuffer queueing primitives, which may allow malicious code running as the user to gain system privileges.

  Tags:  advisory code freetype apple-security arbitrary-code-execution conversion-issue system-privileges  

• 7:19

  Apple Security Advisory 2011-07-15-2

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-07-15-2 - A buffer overflow exists in FreeType's handling of TrueType font files. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. A signedness issue exists in FreeType's handling of Type 1 fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. An invalid type conversion issue exists in the use of IOMobileFrameBuffer queueing primitives, which may allow malicious code running as the user to gain system privileges.

  Tags:  advisory code freetype apple-security arbitrary-code-execution conversion-issue system-privileges  

• 7:16

  Apple Security Advisory 2011-07-15-1

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-07-15-1 - A buffer overflow exists in FreeType's handling of TrueType fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. An invalid type conversion issue exists in the use of IOMobileFrameBuffer queueing primitives, which may allow malicious code running as the user to gain system privileges.

  Tags:  advisory code buffer apple-security arbitrary-code-execution conversion-issue system-privileges  

• 7:16

  Apple Security Advisory 2011-07-15-1

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-07-15-1 - A buffer overflow exists in FreeType's handling of TrueType fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution. An invalid type conversion issue exists in the use of IOMobileFrameBuffer queueing primitives, which may allow malicious code running as the user to gain system privileges.

  Tags:  advisory code buffer apple-security arbitrary-code-execution conversion-issue system-privileges  

• July 05, 2011
• 7:33

  Apple Security Advisory 2011-06-28-2

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-06-28-2 - Multiple vulnerabilities exist in Java 1.6.0_24, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• 7:33

  Apple Security Advisory 2011-06-28-2

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-06-28-2 - Multiple vulnerabilities exist in Java 1.6.0_24, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• June 29, 2011
• 16:23

  Apple Security Advisory 2011-06-28

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2011-06-28-1 - Multiple vulnerabilities exist in Java 1.6.0_24, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_26.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• 16:23

  Apple Security Advisory 2011-06-28

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2011-06-28-1 - Multiple vulnerabilities exist in Java 1.6.0_24, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_26.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• 16:23

  Apple Security Advisory 2011-06-28

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2011-06-28-1 - Multiple vulnerabilities exist in Java 1.6.0_24, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_26.

  Tags:  java advisory applet apple-security arbitrary-code-execution java-sandbox untrusted  

• March 10, 2011
• 16:27

  Apple Security Update Leaves iPhone 3G Users Unprotected

   » ‎ Packet Storm Security Headlines
  Apple Security Update Leaves iPhone 3G Users Unprotected

  Tags:  leaves update iphone g-users apple-security apple  

• March 08, 2011
• 16:59

  Charlie Miller And Dino Dai Zovi Talk Apple Security

   » ‎ Packet Storm Security Headlines
  Charlie Miller And Dino Dai Zovi Talk Apple Security

  Tags:  talk dino-dai-zovi charlie-miller apple-security apple  

• December 16, 2010
• 23:46

  Apple Security Advisory 2010-12-16

   » ‎ Packet Storm Security Advisories
  Apple Security Advisory 2010-12-16-1 - Multiple vulnerabilities have been addressed in Time Capsule and the Airport Base Station.

  Tags:  advisory multiple time apple-security airport-base capsule security-advisory time-capsule vulnerabilities  

• 23:46

  Apple Security Advisory 2010-12-16

   » ‎ Packet Storm Security Recent Files
  Apple Security Advisory 2010-12-16-1 - Multiple vulnerabilities have been addressed in Time Capsule and the Airport Base Station.

  Tags:  advisory multiple time apple-security airport-base capsule security-advisory time-capsule vulnerabilities  

• 23:46

  Apple Security Advisory 2010-12-16

   » ‎ Packet Storm Security Misc. Files
  Apple Security Advisory 2010-12-16-1 - Multiple vulnerabilities have been addressed in Time Capsule and the Airport Base Station.

  Tags:  advisory multiple time apple-security airport-base capsule security-advisory time-capsule vulnerabilities