• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Apple Mac OS X Security Update 2005-008 Multiple Vulnerabilities

Apple has released Security Update 2005-008 to address multiple Mac OS X local and remote vulnerabilities.

The following vulnerabilities were addressed by the security update:

An arbitrary code execution vulnerability in ImageIO.

Two vulnerabilities in Mail resulting in information disclosure.

A local privilege escalation vulnerability in malloc. This issue has been split into BID 14939.

An arbitrary code execution vulnerability in QuickDraw Manager.

A privilege escalation vulnerability in QuickTime for Java.

An arbitrary code execution vulnerability in Ruby.

A cross-site scripting vulnerability in Safari.

An unauthorized access vulnerability in SecurityAgent.

A privilege escalation vulnerability in securityd.