Site Network: | | Jongsma & Jongsma

Security for All

Sûnnet Beskerming is a company with a focus and a drive to provide Information Security services for all those who want to stay safe and secure in an online world.

Username: | Password: Contact us to request an account

OS X 10.4 - Remote hacker automatic control

Version: 10.4.10 and prior.
Technical Details:

Numerous issues affecting OS X 10.4.x and 10.3.x, including:

bzip2 - bzgrep run on a file with a malicious name may lead to arbitrary code execution (filename handling issue)

CFNetwork - Poor handling of FTP commands passed via a URI may lead to arbitrary command execution. A second issue, affecting HTTP response splitting may lead to XSS conditions. A vulnerability in the Java interface to CoreAudio (via CFNetwork) allows for arbitrary memory freeing and arbitrary code execution.

cscope - Multiple vulnerabilities, allowing buffer overflow conditions.

gnuzip - Similar problem to that affecting bzip2

iChat - Denial of Service or arbitrary code execution as a result of buffer overflow conditions in UPnP IGD.

Kerberos - Multiple vulnerabilities, including remote code execution (see separate vulnerability reports).

mDNSResponder - Denial of Service or arbitrary code execution as a result of poor handling of UPnP IGD code. UPnP IGD support has been removed.

PDFKit - Maliciously named PDF files may lead to arbitrary code execution.

PHP - Multiple vulnerabilities.

Quartz Composer - Denial of service and possible arbitrary code execution due to poor handling of Quartz Composer files.

Samba - Malicious MS-RPC requests can lead to arbitrary code execution or denial of service.

SquirrelMail - Multiple vulnerabilities, most serious of which is XSS.

Tomcat - Multiple vulnerabilities.

WebCore - Multiple vulnerabilities, including the operation of Java applets when Java support is disabled, scripting within HTML elements, and multiple XSS opportunities.

WebKit - Poor IDN support leading to URL obfuscation and poor handling of PCRE can lead to arbitrary code execution.


Apple have released Security Update 2007-007, addressing a large number of serious vulnerabilities affecting both OS X 10.4.x and 10.3.x (Tiger and Panther, respectively). A number of the vulnerabilities also affect the iPhone and Safari 3 Betas and have been addressed via separate updates as well.

A number of the vulnerabilities could allow remote control over vulnerable systems, while others could lead to loss of functionality for legitimate users.


Security Update 2007-007 should be applied at the earliest opportunity. The update can be applied either through the Software Update application, or through manually downloading it from the download link below.




External Tracking Data:

CVE-ID: CVE-2005-0758 CVE-ID: CVE-2007-2403 CVE-ID: CVE-2007-2404 CVE-ID: CVE-2007-3745 CVE-ID: CVE-2007-3746 CVE-ID: CVE-2007-3747 CVE-ID: CVE-2004-0996 CVE-ID: CVE-2004-2541 CVE-ID: CVE-2005-0758 CVE-ID: CVE-2007-3748 CVE-ID: CVE-2007-2442 CVE-ID: CVE-2007-2443 CVE-ID: CVE-2007-2798 CVE-ID: CVE-2007-3744 CVE-ID: CVE-2007-2405 CVE-ID: CVE-2007-1001, CVE-2007-1287, CVE-2007-1460, CVE-2007-1461, CVE-2007-1484, CVE-2007-1521, CVE-2007-1583, CVE-2007-1711, CVE-2007-1717 CVE-ID: CVE-2007-2406 CVE-ID: CVE-2007-2446 CVE-ID: CVE-2007-2447 CVE-ID: CVE-2007-2407 CVE-ID: CVE-2005-3128, CVE-2006-2842, CVE-2006-3174, CVE-2006-4019, CVE-2006-6142, CVE-2007-1262, CVE-2007-2589 CVE-ID: CVE-2005-2090, CVE-2007-0450, CVE-2007-1358, CVE-2007-1860 CVE-ID: CVE-2007-2408 CVE-ID: CVE-2007-0478 CVE-ID: CVE-2007-2409 CVE-ID: CVE-2007-2410 CVE-ID: CVE-2007-3742 CVE-ID: CVE-2007-3944

Social bookmark this page