Hartz
11-05-06, 23:04
Disponibile via Aggiornamento Software.
Ecco la descrizione:
Security Update 2006-003
AppKit
Impact: Characters entered into a secure text field can be read by other applications in the same window session
AppKit, ImageIO
Impact: Viewing a maliciously-crafted GIF or TIFF image may lead to arbitrary code execution
BOM
Impact: Expanding an archive may lead to arbitrary code execution
BOM
Impact: Expanding a malicious archive may cause arbitrary files to be created or overwritten
CFNetwork
Impact: Visiting malicious web sites may lead to arbitrary code execution
CoreFoundation
Impact: Registration of an untrusted bundle may lead to arbitrary code execution
CoreFoundation
Impact: String conversions to file system representation may lead to arbitrary code execution
CoreGraphics
Impact: Characters entered into a secure text field can be read by other applications in the same window session
Finder
Impact: Launching an Internet Location item may lead to arbitrary code execution
FTPServer
Impact: FTP operations by authenticated FTP users may lead to arbitrary code execution
Flash Player
Impact: Playing Flash content may lead to arbitrary code execution
ImageIO
Impact: Viewing a maliciously-crafted JPEG image may lead to arbitrary code execution
Keychain
Impact: An application may be able to use Keychain items when the Keychain is locked
LaunchServices
Impact: Viewing a malicious web site may lead to arbitrary code execution
libcurl
Impact: URL handling in libcurl may lead to arbitrary code execution
Mail
Impact: Viewing a malicious mail message may lead to arbitrary code execution
Preview
Impact: Navigating a maliciously-crafted directory hierarchy may lead to arbitrary code execution
QuickDraw
Impact: Viewing a maliciously-crafted PICT image may lead to arbitrary code execution
Ruby
Impact: Ruby safe level restrictions may be bypassed
Safari
Impact: Visiting malicious web sites may lead to file manipulation or arbitrary code execution.
:vecchietto:
Ecco la descrizione:
Security Update 2006-003
AppKit
Impact: Characters entered into a secure text field can be read by other applications in the same window session
AppKit, ImageIO
Impact: Viewing a maliciously-crafted GIF or TIFF image may lead to arbitrary code execution
BOM
Impact: Expanding an archive may lead to arbitrary code execution
BOM
Impact: Expanding a malicious archive may cause arbitrary files to be created or overwritten
CFNetwork
Impact: Visiting malicious web sites may lead to arbitrary code execution
CoreFoundation
Impact: Registration of an untrusted bundle may lead to arbitrary code execution
CoreFoundation
Impact: String conversions to file system representation may lead to arbitrary code execution
CoreGraphics
Impact: Characters entered into a secure text field can be read by other applications in the same window session
Finder
Impact: Launching an Internet Location item may lead to arbitrary code execution
FTPServer
Impact: FTP operations by authenticated FTP users may lead to arbitrary code execution
Flash Player
Impact: Playing Flash content may lead to arbitrary code execution
ImageIO
Impact: Viewing a maliciously-crafted JPEG image may lead to arbitrary code execution
Keychain
Impact: An application may be able to use Keychain items when the Keychain is locked
LaunchServices
Impact: Viewing a malicious web site may lead to arbitrary code execution
libcurl
Impact: URL handling in libcurl may lead to arbitrary code execution
Impact: Viewing a malicious mail message may lead to arbitrary code execution
Preview
Impact: Navigating a maliciously-crafted directory hierarchy may lead to arbitrary code execution
QuickDraw
Impact: Viewing a maliciously-crafted PICT image may lead to arbitrary code execution
Ruby
Impact: Ruby safe level restrictions may be bypassed
Safari
Impact: Visiting malicious web sites may lead to file manipulation or arbitrary code execution.
:vecchietto: