Apple has released security updates to address multiple vulnerabilities identified in Mac OS X. These flaws could be exploited by remote attackers to execute arbitrary commands or bypass security restrictions.
The first issue is due to an error when loading documents containing specially crafted Javascript code, which could be exploited by malicious web sites to bypass the same-origin policy restrictions and access arbitrary data.
The second flaw is due to a buffer overflow error in Mail when handling specially crafted attachments, which could be exploited by remote attackers to execute arbitrary commands by convincing a user to double-click on a malicious attachment within Mail.
The third vulnerability is due to errors within the validation of file types in Safari and LaunchServices, which could be exploited by attackers to execute arbitrary commands, via a malicious shell script masqueraded as a safe file type. This vulnerability is a variant of FrSIRT/ADV-2006-0671
Note : Various regressions caused by Security Update 2006-001 have also been identified in "apache_mod_php" and "rsync".
Credits
Vulnerabilities reported by Kevin Finisterre, Will Dormann and Andris Baumberger.
ChangeLog
2006-03-13 : Initial release
2006-03-16 : Security Update 2006-002 v1.1 for version 10.4.5
Vulnerability Management
Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.
French
