Zero Day Initiative Advisory 12-185 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Mac OSX. Authentication is not required to exploit this vulnerability.
>> TAG: #Apple
Apple Security Advisory 2012-11-07-1 – QuickTime version 7.7.3 is now available and addresses multiple buffer overflows, memory corruption, and use after free vulnerabilities.
Secunia Security Advisory – Two vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to compromise a user’s system.
Apple Security Advisory 2012-11-01-2 – Safari 6.0.2 is now available and addresses multiple arbitrary code execution vulnerabilities.
Apple Security Advisory 2012-11-01-1 – iOS 6.0.1 is now available and addresses an information disclosure issue, a Passbook bypass, an arbitrary code execution vulnerability, and more.
[Hebrew] Digital Whisper Security Magazine #37
Apple QuickTime Player version 7.7.2 division by zero crash proof of concept exploit.
Apple iOS MobileMail LibTIFF Buffer Overflow
Apple iOS MobileSafari LibTIFF Buffer Overflow
This Metasploit module exploits the default credentials of Apple iOS when it has been jailbroken and the passwords for the ‘root’ and ‘mobile’ users have not been changed.