>> CATEGORY: Apple

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a…

Apple Security Advisory 2016-05-16-6 – iTunes 12.4 is now available and addresses a code execution vulnerability.

Apple Security Advisory 2016-05-16-5 – Safari 9.1.1 is now available and addresses history deletion, data disclosure, code execution, and various other vulnerabilities.

Apple Security Advisory 2016-05-16-4 – OS X El Capitan 10.11.5 and Security Update 2016-003 is now available and addresses code execution, PHP flaws, information leakage, and various other vulnerabilities.

Apple Security Advisory 2016-05-16-3 – watchOS 2.2.1 is now available and addresses information leakage, code execution, and various other vulnerabilities.

Apple Security Advisory 2016-05-16-2 – iOS 9.3.2 is now available and addresses buffer overflow, information leakage, and various other vulnerabilities.

Apple Security Advisory 2016-05-16-1 – tvOS 9.2.1 is now available and addresses information disclosure, code execution issues, and more.

This Metasploit module exploits a shell command injection in the way “delegates” (commands for converting files) are processed in ImageMagick versions

This is a SUID, SIP, and binary entitlements universal OS X local privilege escalation exploit.

Apple iOS version 9.3.1 suffers from a Siri-related passcode bypass vulnerability.