Apple Security Advisory 2019-8-26-3 - tvOS 12.4.1 is now available and addresses an arbitrary code execution vulnerability.
4913bfefe77f0f7b8fc3418e18e800a7Apple Security Advisory 2019-8-26-2 - macOS Mojave 10.14.6 Supplemental Update is now available and addresses an arbitrary code execution vulnerability.
b1b0a62ea48953fa7250a2ac9b07ae4bApple Security Advisory 2019-8-26-1 - iOS 12.4.1 is now available and addresses an arbitrary code execution vulnerability.
304183f7398a95f49e3f00a11d1eebf8Apple Security Advisory 2019-08-13-5 - SwiftNIO HTTP/2 1.5.0 is now available and addresses resource exhaustion issues.
7f422a0c5b3bd35e00aa260cbf802e45Apple Security Advisory 2019-8-13-4 - tvOS 12.4 addresses code execution, cross site scripting, and use-after-free vulnerabilities.
9410ec23a25b02097dfaa3ac5da2995fApple Security Advisory 2019-8-13-3 - watchOS 5.3 addresses code execution, cross site scripting, denial of service, and use-after-free vulnerabilities.
1aed33ea01066aa1115abde850673601Apple Security Advisory 2019-8-13-2 - iOS 12.4 addresses code execution, cross site scripting, denial of service, and use-after-free vulnerabilities.
df916c854ed3a2729571ccd7d25fc811Apple Security Advisory 2019-8-13-1 - Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra.
86af1a900e3371e1dc8751b5686fab1cThis repository contains several tools Project Zero uses to test iPhone messaging. It includes SmsSimulator: an SMS simulator for iPhone, iMessage: tools for sending and dumping iMessage messages, and imapiness: a fuzzer for IMAP clients. See the directory for each tool for further instructions and contact information. This is not an officially supported Google product. These tools were released and presented at BlackHat USA 2019.
2e9ddb1606e5ec0f3068837fa5919c6cApple Security Advisory 2019-7-23-3 - iCloud for Windows 10.6 is now available and addresses code execution and cross site scripting vulnerabilities.
98cc5a2a662daa690366a47dd9e07e3eApple Security Advisory 2019-7-23-2 - iTunes for Windows 12.9.6 is now available and addresses code execution and cross site scripting vulnerabilities.
f8389ffec863bcb70370d22531dc7142Apple Security Advisory 2019-7-23-1 - iCloud for Windows 7.13 is now available and addresses code execution and cross site scripting vulnerabilities.
96064e089020b42473b27575a18b6a66Apple Security Advisory 2019-7-22-5 - tvOS 12.4 is now available and addresses code execution, cross site scripting, and use-after-free vulnerabilities.
6feffd1dbe96552cd66bd7e65c7f4cd2Apple Security Advisory 2019-7-22-2 - macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra are now available and address bypass, code execution, and use-after-free vulnerabilities.
0cb56e1f776072ff7034f21c2cd175faApple Security Advisory 2019-7-22-3 - Safari 12.1.2 is now available and addresses code execution and cross site scripting vulnerabilities.
fcb42be131970f445cada1fe16a0cf62Apple Security Advisory 2019-7-22-4 - watchOS 5.3 is now available and addresses code execution, cross site scripting, denial of service, and use-after-free vulnerabilities.
412bc678594c28b5a2d3b6c0a73f1f3cApple Security Advisory 2019-7-22-1 - iOS 12.4 is now available and addresses code execution, cross site scripting, denial of service, and use-after-free vulnerabilities.
23a3e8592a20a87f05acfd811218619aAn issue exists where a malformed iMessage can brick an iPhone. A method in IMCore can throw an NSException due to a malformed message containing a property with key IMExtensionPayloadLocalizedDescriptionTextKey with a value that is not a NSString.
fb007a18977fff5d77770c60f17d53dfThis Metasploit module exploits a command injection in TimeMachine on macOS <= 10.14.3 in order to run a payload as root. The tmdiagnose binary on OSX <= 10.14.3 suffers from a command injection vulnerability that can be exploited by creating a specially crafted disk label. The tmdiagnose binary uses awk to list every mounted volume, and composes shell commands based on the volume labels. By creating a volume label with the backtick character, we can have our own binary executed with root privileges.
88ce8400a2b47fff385110d9d04c371bApple Security Advisory 2019-6-20-1 - AirPort Base Station Firmware Update 7.8.1 is now available and addresses denial of service and null pointer vulnerabilities.
ed9dd8b63cfca9c037f0be029d4b4dd6Apple Security Advisory 2019-5-30-1 - AirPort Base Station Firmware Update 7.9.1 is now available and addresses denial of service and null pointer vulnerabilities.
0f825713759a5f340d60f17d3328a838Apple Security Advisory 2019-5-28-1 - iTunes for Windows 12.9.5 is now available and addresses code execution vulnerabilities.
8c1f1ce22a0b31d4c2bcadcfc8c1c825Apple Security Advisory 2019-5-28-2 - iCloud for Windows 7.12 is now available and addresses code execution vulnerabilities.
74d63f98e99677f37543232c3d2f1639Visual Voicemail for iPhone suffers from a use-after-free vulnerability in IMAP NAMESPACE processing.
ee209f50afa19dc15f5533506c05c21cApple Security Advisory 2019-5-13-5 - Safari 12.1.1 is now available and addresses code execution vulnerabilities.
21c60aa9fe0305cd661e7babfff726ed
© 2019 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed