Site Network: | | Jongsma & Jongsma

Security for All

Sûnnet Beskerming is a company with a focus and a drive to provide Information Security services for all those who want to stay safe and secure in an online world.

Username: | Password: Contact us to request an account

OS X 10.4 - Remote hacker automatic control

Version: 10.4.10 and prior.
Technical Details:

OS X 10.4.11 and Security Update 2007-008 have been released, addressing numerous serious vulnerabilities, including:

AppleRAID - Opening a maliciously crafted disk image may lead to an unexpected system shutdown.
BIND - An attacker may be able to control the content provided by a DNS server (weak random number generation)
bzip2 - Multiple vulnerabilities in bzip2
CFFTP - A user's FTP client could be remotely controlled to connect to other hosts
CFNetwork - Multiple Vulnerabilities
CoreFoundation - Reading a directory hierarchy may lead to an unexpected
application termination or arbitrary code execution
CoreText - Viewing maliciously crafted text content may lead to an
unexpected application termination or arbitrary code execution
Flash Player Plug-in - Opening maliciously crafted Flash content may lead to arbitrary code execution
Kerberos - A remote attacker may be able to cause a denial of service or
arbitrary code execution if the Kerberos administration daemon is enabled
Kernel - Multiple Vulnerabilities
Networking - Multiple Vulnerabilities
NFS - A maliciously crafted AUTH_UNIX RPC call may lead to an unexpected system shutdown or arbitrary code execution
NSURL - Visiting a malicious web site may result in arbitrary code execution
remote_cmds - If tftpd is enabled, the default configuration allows clients
to access any path on the system
Safari - Multiple Vulnerabilities
SecurityAgent - A person with physical access to a system may be able to
bypass the screen saver authentication dialog
WebCore - Multiple Vulnerabilities
WebKit - Multiple Vulnerabilities


Apple Inc have released a cumulative update for OS X 10.4, bringing it to 10.4.11, and have released a separate Security Update 2007-008, for OS X 10.3.x systems (included in the 10.4.11 update). The update provides fixes for multiple serious vulnerabilities, including for AppleRAID, BIND, bzip2, CoreFoundation, and other system components. Vulnerabilities range from denial of service and local privilege escalation, through to automatic remote code execution.


Apply the update to OS X 10.4.11 or Security Update 2007-008 (OS X 10.3.x systems) at the earliest opportunity, either from the Software Update option in the Apple Menu, or from Apple's download link, below.

If the Software Update application is used, only the applicable update will be selected and installed on a vulnerable system.




External Tracking Data:

CVE-ID: CVE-2007-4678 (AppleRAID) CVE-ID: CVE-2007-2926 (BIND) CVE-ID: CVE-2005-0953 (bzip2) CVE-ID: CVE-2005-1260 (bzip2) CVE-ID: CVE-2007-4679 (CFFTP) CVE-ID: CVE-2007-4680 (CFNetwork) CVE-ID: CVE-2007-0464 (CFNetwork) CVE-ID: CVE-2007-4681 (CoreFoundation) CVE-ID: CVE-2007-4682 (CoreText) CVE-ID: CVE-2007-3456 (Flash Player) CVE-ID: CVE-2007-3999 (Kerberos) CVE-ID: CVE-2007-4743 (Kerberos) CVE-ID: CVE-2007-3749 (Kernel) CVE-ID: CVE-2007-4683 (Kernel) CVE-ID: CVE-2007-4684 (Kernel) CVE-ID: CVE-2007-4685 (Kernel) CVE-ID: CVE-2006-6127 (Kernel) CVE-ID: CVE-2007-4686 (Kernel) CVE-ID: CVE-2007-4688 (Networking) CVE-ID: CVE-2007-4269 (Networking) CVE-ID: CVE-2007-4689 (Networking) CVE-ID: CVE-2007-4267 (Networking) CVE-ID: CVE-2007-4268 (Networking) CVE-ID: CVE-2007-4690 (NFS) CVE-ID: CVE-2007-4691 (NSURL) CVE-ID: CVE-2007-4687 (remote_cmds) CVE-ID: CVE-2007-0646 (Safari) CVE-ID: CVE-2007-4692 (Safari) CVE-ID: CVE-2007-4693 (SecurityAgent) CVE-ID: CVE-2007-4694 (WebCore) CVE-ID: CVE-2007-4695 (WebCore) CVE-ID: CVE-2007-4696 (WebCore) CVE-ID: CVE-2007-4697 (WebCore) CVE-ID: CVE-2007-4698 (WebCore) CVE-ID: CVE-2007-3758 (WebCore) CVE-ID: CVE-2007-3760 (WebCore) CVE-ID: CVE-2007-4671 (WebCore) CVE-ID: CVE-2007-3756 (WebCore) CVE-ID: CVE-2007-4699 (WebKit) CVE-ID: CVE-2007-4700 (WebKit) CVE-ID: CVE-2007-4701 (WebKit)

Social bookmark this page