Numerous issues affecting OS X 10.4.x and 10.3.x, including:

bzip2 - bzgrep run on a file with a malicious name may lead to arbitrary code execution (filename handling issue)

CFNetwork - Poor handling of FTP commands passed via a URI may lead to arbitrary command execution. A second issue, affecting HTTP response splitting may lead to XSS conditions. A vulnerability in the Java interface to CoreAudio (via CFNetwork) allows for arbitrary memory freeing and arbitrary code execution.

cscope - Multiple vulnerabilities, allowing buffer overflow conditions.

gnuzip - Similar problem to that affecting bzip2

iChat - Denial of Service or arbitrary code execution as a result of buffer overflow conditions in UPnP IGD.

Kerberos - Multiple vulnerabilities, including remote code execution (see separate vulnerability reports).

mDNSResponder - Denial of Service or arbitrary code execution as a result of poor handling of UPnP IGD code. UPnP IGD support has been removed.

PDFKit - Maliciously named PDF files may lead to arbitrary code execution.

PHP - Multiple vulnerabilities.

Quartz Composer - Denial of service and possible arbitrary code execution due to poor handling of Quartz Composer files.

Samba - Malicious MS-RPC requests can lead to arbitrary code execution or denial of service.

SquirrelMail - Multiple vulnerabilities, most serious of which is XSS.

Tomcat - Multiple vulnerabilities.

WebCore - Multiple vulnerabilities, including the operation of Java applets when Java support is disabled, scripting within HTML elements, and multiple XSS opportunities.

WebKit - Poor IDN support leading to URL obfuscation and poor handling of PCRE can lead to arbitrary code execution.

Description:

Apple have released Security Update 2007-007, addressing a large number of serious vulnerabilities affecting both OS X 10.4.x and 10.3.x (Tiger and Panther, respectively). A number of the vulnerabilities also affect the iPhone and Safari 3 Betas and have been addressed via separate updates as well.

A number of the vulnerabilities could allow remote control over vulnerable systems, while others could lead to loss of functionality for legitimate users.

Mitigation:

Security Update 2007-007 should be applied at the earliest opportunity. The update can be applied either through the Software Update application, or through manually downloading it from the download link below.

Updates:

http://www.apple.com/support/downloads/

Source:

http://docs.info.apple.com/article.html?artnum=61798

Exploits:

CVE-ID: CVE-2005-0758 CVE-ID: CVE-2007-2403 CVE-ID: CVE-2007-2404 CVE-ID: CVE-2007-3745 CVE-ID: CVE-2007-3746 CVE-ID: CVE-2007-3747 CVE-ID: CVE-2004-0996 CVE-ID: CVE-2004-2541 CVE-ID: CVE-2005-0758 CVE-ID: CVE-2007-3748 CVE-ID: CVE-2007-2442 CVE-ID: CVE-2007-2443 CVE-ID: CVE-2007-2798 CVE-ID: CVE-2007-3744 CVE-ID: CVE-2007-2405 CVE-ID: CVE-2007-1001, CVE-2007-1287, CVE-2007-1460, CVE-2007-1461, CVE-2007-1484, CVE-2007-1521, CVE-2007-1583, CVE-2007-1711, CVE-2007-1717 CVE-ID: CVE-2007-2406 CVE-ID: CVE-2007-2446 CVE-ID: CVE-2007-2447 CVE-ID: CVE-2007-2407 CVE-ID: CVE-2005-3128, CVE-2006-2842, CVE-2006-3174, CVE-2006-4019, CVE-2006-6142, CVE-2007-1262, CVE-2007-2589 CVE-ID: CVE-2005-2090, CVE-2007-0450, CVE-2007-1358, CVE-2007-1860 CVE-ID: CVE-2007-2408 CVE-ID: CVE-2007-0478 CVE-ID: CVE-2007-2409 CVE-ID: CVE-2007-2410 CVE-ID: CVE-2007-3742 CVE-ID: CVE-2007-3944