OmbiWeb version 5.51 suffers from a format string vulnerability.
a78831973f24a948d49ed59403543dddce63a381877be9ae52dfb7e565dfb568
Month of Apple Bugs - This HTML file is an exploit for OmniWeb. OmniWeb is affected by a format string vulnerability in the handling of Javascript alert() function, which could allow remote arbitrary code execution.
297d0995c250f8cc72592389a406917ac1bf22428361bbff663a27278cf94085
Month of Apple Bugs - Warning, this pdf is an exploit. The current PDF specification is affected by a design flaw, a rogue Pages entry or malicious catalog dictionary could cause a denial of service (memory corruption condition, memory leakage, etc) or potential arbitrary code execution in the reader application.
7befba5152c7b30d54a97e3a52d7ff58a3858ea958dac2460153bce1334d0e22
Month of Apple Bugs - Exploit for a vulnerability in the handling of BOM files by the DiskManagement/diskutil that allows the setting of rogue permissions on the filesystem. This can be used to execute arbitrary code and escalate privileges. One of two exploits.
d23d1ffe7410fc22b798de3144cff78a0f519bb100421ea6abce589bef246321
Month of Apple Bugs - Exploit for a vulnerability in the handling of BOM files by the DiskManagement/diskutil that allows the setting of rogue permissions on the filesystem. This can be used to execute arbitrary code and escalate privileges. One of two exploits.
9ff09c4c31ae71fb68fb87e214f17eb7e955b0cbe68a242d876ba38452f4a223
Month Of Apple Bugs - A vulnerability in the handling of Apple DiskManagement BOM files allows to set rogue permissions on the filesystem via the 'diskutil' tool. This can be used to execute arbitrary code and escalate privileges. A malicious user could create a BOM declaring new permissions for specific filesystem locations (ex. binaries, cron and log directories, etc). Once 'diskutil' runs a permission repair operation the rogue permissions would be set, allowing to plant a backdoor, overwrite resources or simply gain root privileges.
c25666ddbe5ff06c32ae1027a19af259bbc8f98431a50aaf19f02ff9168bb9ec
Proof of concept exploit for a format string vulnerability in the handling of iPhoto XML feeds title field that allows for potential remote arbitrary code execution.
e22a6470fc666699af0e4e6af18f627ff30d33949f7b6a49f61f9c8b697fc9de
A format string vulnerability in the handling of iPhoto XML feeds title field allows potential remote arbitrary code execution.
88beb803c889745f602294769e427670b7244b32e210379b0c1ba1987045b753
Presentation given at 23C3 called Bluetooth Hacking Revisited.
62cb81e204ee1879c82113f8ffc4c4c8fa9b539abcf6a25d3af5d29d73336577
Month Of Apple Bugs - A vulnerability in the handling of the HREFTrack field in Apple QuickTime allows cross-zone scripting, leading to potential remote arbitrary code execution.
82e3af040fcc4e61d05647eb0b0db44301d563a10028b396f5a1ff378299df69
Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This is just a vanilla format string exploit for OSX on ppc.
eee494f2f67e54b963758dd0fa93937a50e35597b8d00f31b63f7f421bb37406
Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code.
4a8563fe447682266c5981ff8f4f4eb1e3e5a7ac789b3d0b1ce506d8981cf777
Month Of Apple Bugs - Apple Quicktime stack buffer overflow exploit that makes use of the rtsp URL Handler vulnerability.
d599dfe435a136f896e1f7fd01b079a21a224eedd8616619700a2c3b1a2ac617
Local privilege escalation exploit for Kerio WebSTAR versions 5.4.2 and below which suffer from a local privilege escalation vulnerability due to an improper loading of a library.
348e6138bc49a3143247bec9a4c214653ceca1ead1eb83b9e524b1b7cf979444
Kerio WebSTAR versions 5.4.2 and below suffer from a local privilege escalation vulnerability due to an improper loading of a library.
8aef29338e469e924e743135fe46ec140c3e14f4a70c29302bca1c5781c28d15
Race condition exploit that takes advantage of a flaw in Intego VirusBarrier X4.
8fbc3bac0aef7c91710230a3e7449dcef6d21741f4c4c879f4899e657a426416
Intego VirusBarrier X4 suffers from a definition bypass vulnerability.
cb1239541fb426479250540f9150a7e2c069a130c929584cf04e64628d107c1d
Local exploit for the openexec binary in OpenBase SQL versions 10.0 and below which creates a root owned file with 0666 privileges.
a7daa38ac6795fc374ca6fe7775e9474bbf406916127f15d71536db71c9f453b
Local root exploit for the openexec binary in OpenBase SQL versions 10.0 and below which makes poor use of system().
d8bd5d35686b4521d00e617deaa5dc653367d439db5a2093aacde04fc5d585d3
The openexec binary makes poor use of its setuid privileges when calling various helper binaries such as: cp, rm and killall. Each of the mentioned binaries winds up being called while openexec is running as root. Using the PATH environment variable it is possible to influence openbase in a manner that forces it to call the various helper binaries from a location of the attackers choice. OpenBase SQL versions 10.0 and below are affected.
ad085189dd0915f8dae7270a178ad7c5e725a20fdd3cfa1d4ef7ea7224f1dae6
DMA-2006-1016a - Apple Xcode WebObjects / OpenBase SQL multiple vulnerabilities including local root and file creation.
2e9a7704a15945cda4c84fce6506a7120005ece92cc5c8fe21b842517833457d
Mac OS X versions 10.4.7 and below Mach Exception handling local exploit.
0b61b584f7131fa9bf13b6a2ffa8d69159c44addda8cc54bd4d2758903136439
Exploit for fetchmail on Mac OSX versions 10.4.7 and below on the x86 architecture.
abc8c5b9a5bc11f1d75838f33a3f66f9084ed5b0f340b4ec323a19ef3bb3c7c7
Shellscript exploit for fetchmail on Mac OSX versions 10.4.7 and below.
a7bcf7de5e8c976b85f2fa9843daaa6d420c62fa3d036f99c66a984a01557bbf
Exploit for fetchmail on Mac OSX versions 10.4.7 and below on the PPC architecture.
8fefc8253056f33ef76e022136819d38456365ed244f5190a475b2f1a4db32ed