Severity: High
28 May, 2008
Summary:
- These vulnerabilities affect: OS X 10.4.x (Tiger) and OS X 10.5.x (Leopard), both client and server versions
- How an attacker exploits them: Multiple vectors of attack, including enticing one of your users into visiting a URL or web site
- Impact: Various results; in the worst case, attacker executes code on your user’s computer, potentially gaining control of your user’s computer
- What to do: OS X administrators should download, test and install Security Update 2008-003 / Mac OS X 10.5.3
Exposure:
Today, Apple released a security update fixing at least 41 (number based on CVE-IDs) security issues in software packages that ship as part of OS X, including Apache, iCal, and Mail. Some of these vulnerabilities allow attackers to execute code on your OS X machines, so we rate this update Critical. Apply it as soon as you can. Three of the vulnerabilities which have been fixed are:
0 Comments