:: Deepquest ::

Apple Security Advisory 2013-02-19-1 – Multiple vulnerabilities existed in Java 1.6.0_37, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues were addressed by updating to Java version 1.6.0_41.

IP.Gallery 4.2.x and 5.0.x Persistent XSS Vulnerability

Apple Security Advisory 2013-02-04-1 – OS X Server version 2.2.1 is now available and addresses security issues in Profile Manager and Wiki Server.

Secunia Security Advisory – Apple has issued an update for Java for Mac OS X.

Apple Security Advisory 2013-02-01-1 – Multiple vulnerabilities exist in Java 1.6.0_37, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user.

Apple QuickTime Player Windows version 7.7.3 suffers from an out of bounds read vulnerability.

SonicWall SonicOS 5.8.1.8 WAF XSS Vulnerability

Secunia Security Advisory – Apple has acknowledged two vulnerabilities in Apple TV, which can be exploited by malicious people to disclose certain information and compromise a user’s device.

Apple Security Advisory 2012-11-29-1 – Apple TV 5.1.1 is now available and addresses information disclosure and code execution vulnerabilities.

Apple WGT Dictionnaire version 1.3 suffers from a script code injection vulnerability.