Apple Security Advisory 2011-07-20-1 – A large amount of security issues have been addressed in Safari versions 5.1 and 5.0.6. These range from cross site scripting, possible arbitrary code execution, accidental trust in a disable root certificate, buffer and integer overflows, and more.
Tags: Apple, apple-security, code-execution, disable-root, security-issuesSecunia Security Advisory – A weakness and multiple vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, and compromise a user’s system.
Tags: Apple, apple-safari, exploit, SecurityApple Security Advisory 2011-07-15-2 – A buffer overflow exists in FreeType’s handling of TrueType font files. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution.
Tags: apple-security, SecurityApple Security Advisory 2011-07-15-1 – A buffer overflow exists in FreeType’s handling of TrueType fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution
Tags: Apple, buffer-overflow, pdfSecunia Security Advisory – A vulnerability has been reported in Apple iOS, which can be exploited by malicious people to compromise a vulnerable system.
Tags: Apple, exploit, secunia-securityApple Security Advisory 2011-06-28-2 – Multiple vulnerabilities exist in Java 1.6.0_24, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user.
Tags: apple-security, SecurityA corrupt Canon Camera RAW file (.CR2) can cause a crash in the RawCamera library. This affects viewing files in both the Preview.app application or via Quick Look. Mac OS X 10.6.6 with RawCamera.bundle versions prior to 3.6 are affected.
Tags: affects, affects-viewing, rawcamera, versions-priorThe Apple Developer site suffered from open redirect, cross site scripting, and http response splitting vulnerabilities.
Tags: Apple, apple-developer, cross-site, response-splittingZero Day Initiative Advisory 11-231 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file
Tags: Apple, Application, the-application
