OmbiWeb version 5.51 suffers from a format string vulnerability.
a78831973f24a948d49ed59403543dddce63a381877be9ae52dfb7e565dfb568Month of Apple Bugs - This HTML file is an exploit for OmniWeb. OmniWeb is affected by a format string vulnerability in the handling of Javascript alert() function, which could allow remote arbitrary code execution.
297d0995c250f8cc72592389a406917ac1bf22428361bbff663a27278cf94085Month of Apple Bugs - Warning, this pdf is an exploit. The current PDF specification is affected by a design flaw, a rogue Pages entry or malicious catalog dictionary could cause a denial of service (memory corruption condition, memory leakage, etc) or potential arbitrary code execution in the reader application.
7befba5152c7b30d54a97e3a52d7ff58a3858ea958dac2460153bce1334d0e22Month of Apple Bugs - Exploit for a vulnerability in the handling of BOM files by the DiskManagement/diskutil that allows the setting of rogue permissions on the filesystem. This can be used to execute arbitrary code and escalate privileges. One of two exploits.
d23d1ffe7410fc22b798de3144cff78a0f519bb100421ea6abce589bef246321Month of Apple Bugs - Exploit for a vulnerability in the handling of BOM files by the DiskManagement/diskutil that allows the setting of rogue permissions on the filesystem. This can be used to execute arbitrary code and escalate privileges. One of two exploits.
9ff09c4c31ae71fb68fb87e214f17eb7e955b0cbe68a242d876ba38452f4a223Month Of Apple Bugs - A vulnerability in the handling of Apple DiskManagement BOM files allows to set rogue permissions on the filesystem via the 'diskutil' tool. This can be used to execute arbitrary code and escalate privileges. A malicious user could create a BOM declaring new permissions for specific filesystem locations (ex. binaries, cron and log directories, etc). Once 'diskutil' runs a permission repair operation the rogue permissions would be set, allowing to plant a backdoor, overwrite resources or simply gain root privileges.
c25666ddbe5ff06c32ae1027a19af259bbc8f98431a50aaf19f02ff9168bb9ecProof of concept exploit for a format string vulnerability in the handling of iPhoto XML feeds title field that allows for potential remote arbitrary code execution.
e22a6470fc666699af0e4e6af18f627ff30d33949f7b6a49f61f9c8b697fc9deA format string vulnerability in the handling of iPhoto XML feeds title field allows potential remote arbitrary code execution.
88beb803c889745f602294769e427670b7244b32e210379b0c1ba1987045b753Presentation given at 23C3 called Bluetooth Hacking Revisited.
62cb81e204ee1879c82113f8ffc4c4c8fa9b539abcf6a25d3af5d29d73336577Month Of Apple Bugs - A vulnerability in the handling of the HREFTrack field in Apple QuickTime allows cross-zone scripting, leading to potential remote arbitrary code execution.
82e3af040fcc4e61d05647eb0b0db44301d563a10028b396f5a1ff378299df69Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This is just a vanilla format string exploit for OSX on ppc.
eee494f2f67e54b963758dd0fa93937a50e35597b8d00f31b63f7f421bb37406Month Of Apple Bugs - A vulnerability in the handling of the udp:// URL handler for the VLC Media Player allows remote arbitrary code execution. This exploit will create a malicious .m3u file that will cause VLC Player for OSX to execute arbitrary code.
4a8563fe447682266c5981ff8f4f4eb1e3e5a7ac789b3d0b1ce506d8981cf777Month Of Apple Bugs - Apple Quicktime stack buffer overflow exploit that makes use of the rtsp URL Handler vulnerability.
d599dfe435a136f896e1f7fd01b079a21a224eedd8616619700a2c3b1a2ac617Local privilege escalation exploit for Kerio WebSTAR versions 5.4.2 and below which suffer from a local privilege escalation vulnerability due to an improper loading of a library.
348e6138bc49a3143247bec9a4c214653ceca1ead1eb83b9e524b1b7cf979444Kerio WebSTAR versions 5.4.2 and below suffer from a local privilege escalation vulnerability due to an improper loading of a library.
8aef29338e469e924e743135fe46ec140c3e14f4a70c29302bca1c5781c28d15Race condition exploit that takes advantage of a flaw in Intego VirusBarrier X4.
8fbc3bac0aef7c91710230a3e7449dcef6d21741f4c4c879f4899e657a426416Intego VirusBarrier X4 suffers from a definition bypass vulnerability.
cb1239541fb426479250540f9150a7e2c069a130c929584cf04e64628d107c1dLocal exploit for the openexec binary in OpenBase SQL versions 10.0 and below which creates a root owned file with 0666 privileges.
a7daa38ac6795fc374ca6fe7775e9474bbf406916127f15d71536db71c9f453bLocal root exploit for the openexec binary in OpenBase SQL versions 10.0 and below which makes poor use of system().
d8bd5d35686b4521d00e617deaa5dc653367d439db5a2093aacde04fc5d585d3The openexec binary makes poor use of its setuid privileges when calling various helper binaries such as: cp, rm and killall. Each of the mentioned binaries winds up being called while openexec is running as root. Using the PATH environment variable it is possible to influence openbase in a manner that forces it to call the various helper binaries from a location of the attackers choice. OpenBase SQL versions 10.0 and below are affected.
ad085189dd0915f8dae7270a178ad7c5e725a20fdd3cfa1d4ef7ea7224f1dae6DMA-2006-1016a - Apple Xcode WebObjects / OpenBase SQL multiple vulnerabilities including local root and file creation.
2e9a7704a15945cda4c84fce6506a7120005ece92cc5c8fe21b842517833457dMac OS X versions 10.4.7 and below Mach Exception handling local exploit.
0b61b584f7131fa9bf13b6a2ffa8d69159c44addda8cc54bd4d2758903136439Exploit for fetchmail on Mac OSX versions 10.4.7 and below on the x86 architecture.
abc8c5b9a5bc11f1d75838f33a3f66f9084ed5b0f340b4ec323a19ef3bb3c7c7Shellscript exploit for fetchmail on Mac OSX versions 10.4.7 and below.
a7bcf7de5e8c976b85f2fa9843daaa6d420c62fa3d036f99c66a984a01557bbfExploit for fetchmail on Mac OSX versions 10.4.7 and below on the PPC architecture.
8fefc8253056f33ef76e022136819d38456365ed244f5190a475b2f1a4db32ed
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed