McAfee ePO 4.6.6 – Multiple Vulnerabilities
>> TAG: #Vulnerability
McAfee ePO 4.6.6 – Multiple Vulnerabilities
Zoom X4/X5 ADSL Modem – Multiple Vulnerabilities
Apple Security Advisory 2013-07-02-1 – Security Update 2013-003 is now available and addresses multiple arbitrary code execution vulnerabilities in QuickTime.
Fortigate Firewalls – CSRF Vulnerability
This whitepaper discusses the security of Apple iOS with particular focus on its usage in the workplace.
Apple Security Advisory 2013-04-16-2 – Java for OS X 2013-003 and Mac OS X v10.6 Update 15 are now available and address many vulnerabilities in 1.6.0_43.
Apple Security Advisory 2013-03-19-1 – iOS 6.1.3 is now available and addresses multiple security issues such as execution of unsigned code, permission changes, and more.
Apple Security Advisory 2013-03-04-1 – Multiple vulnerabilities existed in Java 1.6.0_41, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox, have been addressed.
This Metasploit module exploits a vulnerability in Viscosity 1.4.1 on Mac OS X. The vulnerability exists in the setuid ViscosityHelper, where an insufficient validation of path names allows execution of arbitrary python code as root. This Metasploit module has been tested successfully on Viscosity 1.4.1 over Mac OS X 10.7.5.
This Metasploit module exploits a vulnerability in Tunnelblick 3.2.8 on Mac OS X. The vulnerability exists in the setuid openvpnstart, where an insufficient validation of path names allows execution of arbitrary shell scripts as root. This Metasploit module has been tested successfully on Tunnelblick 3.2.8 build 2891.3099 over Mac OS X 10.7.5.