Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:52:13 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1135117982&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Operating%20System%3A%20Apple%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Fos%2Fapple%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1135117982.1338191533.1338191533.1338191533.1%3B%2B__utmz%3D32867617.1338191533.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112789/APPLE-SA-2012-05-15-1.txt http://packetstormsecurity.org/files/112789/APPLE-SA-2012-05-15-1.txt http://packetstormsecurity.org/files/112789/Apple-Security-Advisory-2012-05-15-1.html Wed, 16 May 2012 23:16:27 GMT Apple Security Advisory 2012-05-15-1 - QuickTime 7.7.2 is now available and addresses multiple security issues. Multiple stack overflows existed in QuickTime's handling of TeXML files. A heap overflow existed in QuickTime's handling of text tracks. A heap buffer overflow existed in the handling of H.264 encoded movie files. An uninitialized memory access issue existed in the handling of MP4 encoded files. For OS X Lion systems, this issue is addressed in OS X Lion v10.7.3. For Mac OS X v10.6 systems, this issue is addressed in Security Update 2012-001. Various other issues were also addressed. http://packetstormsecurity.org/files/112747/VMRL-applequicktime.txt http://packetstormsecurity.org/files/112747/VMRL-applequicktime.txt http://packetstormsecurity.org/files/112747/Apple-Quicktime-.pct-Parsing-Memory-Corruption.html Tue, 15 May 2012 22:38:03 GMT Apple Quicktime does not properly parse .pct media files, which causes a corruption in module DllMain by opening a malformed file with an invalid value located in PoC repro01.pct at offset 0x20E. Quicktime Player version 7.7.1 (1680.42) on Windows XP SP 3 - PT_BR is confirmed affected. Other versions may also be affected. http://packetstormsecurity.org/files/112742/APPLE-SA-2012-05-14-2.txt http://packetstormsecurity.org/files/112742/APPLE-SA-2012-05-14-2.txt http://packetstormsecurity.org/files/112742/Apple-Security-Advisory-2012-05-14-2.html Tue, 15 May 2012 22:26:23 GMT Apple Security Advisory 2012-05-14-2 - This update disables Adobe Flash Player if it is older than 10.1.102.64 by moving its files to a new directory. This update presents the option to install an updated version of Flash Player from the Adobe website. http://packetstormsecurity.org/files/112739/APPLE-SA-2012-05-14-1.txt http://packetstormsecurity.org/files/112739/APPLE-SA-2012-05-14-1.txt http://packetstormsecurity.org/files/112739/Apple-Security-Advisory-2012-05-14-1.html Tue, 15 May 2012 22:14:21 GMT Apple Security Advisory 2012-05-14-1 - This update runs a malware removal tool that will remove the most common variants of the Flashback malware. If the Flashback malware is found, it presents a dialog notifying the user that malware was removed. There is no indication to the user if malware is not found. http://packetstormsecurity.org/files/112659/dsa-2471-1.txt http://packetstormsecurity.org/files/112659/dsa-2471-1.txt http://packetstormsecurity.org/files/112659/Debian-Security-Advisory-2471-1.html Mon, 14 May 2012 05:25:14 GMT Debian Linux Security Advisory 2471-1 - Several vulnerabilities have been discovered in FFmpeg, a multimedia player, server and encoder. Multiple input validations in the decoders/ demuxers for Westwood Studios VQA, Apple MJPEG-B, Theora, Matroska, Vorbis, Sony ATRAC3, DV, NSV, files could lead to the execution of arbitrary code. http://packetstormsecurity.org/files/112596/APPLE-SA-2012-05-09-2.txt http://packetstormsecurity.org/files/112596/APPLE-SA-2012-05-09-2.txt http://packetstormsecurity.org/files/112596/Apple-Security-Advisory-2012-05-09-2.html Thu, 10 May 2012 15:24:22 GMT Apple Security Advisory 2012-05-09-2 - Safari 5.1.7 is now available and addresses multiple WebKit related vulnerabilities. http://packetstormsecurity.org/files/112595/APPLE-SA-2012-05-09-1.txt http://packetstormsecurity.org/files/112595/APPLE-SA-2012-05-09-1.txt http://packetstormsecurity.org/files/112595/Apple-Security-Advisory-2012-05-09-1.html Thu, 10 May 2012 15:19:38 GMT Apple Security Advisory 2012-05-09-1 - OS X Lion v10.7.4 and Security Update 2012-002 is now available and addresses multiple security issues. An issue existed in the handling of network account logins. The login process recorded sensitive information in the system log, where other users of the system could read it. A temporary file race condition issue existed in blued's initialization routine. There are known attacks on the confidentiality of SSL 3.0 and TLS 1.0 when a cipher suite uses a block cipher in CBC mode. curl disabled the 'empty fragment' countermeasure which prevented these attacks. This issue is addressed by enabling empty fragments. A data injection issue existed in curl's handling of URLs. This issue is addressed through improved validation of URLs. This issue does not affect systems prior to OS X Lion. Various other vulnerabilities have been addressed. http://packetstormsecurity.org/files/112603/sa47292.txt http://packetstormsecurity.org/files/112603/sa47292.txt http://packetstormsecurity.org/files/112603/Secunia-Security-Advisory-47292.html Thu, 10 May 2012 01:02:05 GMT Secunia Security Advisory - Multiple vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system. http://packetstormsecurity.org/files/112543/APPLE-SA-2012-05-07-1.txt http://packetstormsecurity.org/files/112543/APPLE-SA-2012-05-07-1.txt http://packetstormsecurity.org/files/112543/Apple-Security-Advisory-2012-05-07-1.html Tue, 08 May 2012 19:11:11 GMT Apple Security Advisory 2012-05-07-1 - A URL spoofing issue existed in Safari. This could be used in a malicious web site to direct the user to a spoofed site that visually appeared to be a legitimate domain. Multiple cross site scripting issues existed in WebKit along with a memory corruption issue. http://packetstormsecurity.org/files/112501/sa49039.txt http://packetstormsecurity.org/files/112501/sa49039.txt http://packetstormsecurity.org/files/112501/Secunia-Security-Advisory-49039.html Mon, 07 May 2012 12:01:03 GMT Secunia Security Advisory - A security issue has been reported in Apple Mac OS X, which can be exploited by malicious people with physical access to bypass certain security restrictions. http://packetstormsecurity.org/files/112482/iosapp-insecurity.pdf http://packetstormsecurity.org/files/112482/iosapp-insecurity.pdf http://packetstormsecurity.org/files/112482/iOS-Application-In-Security.html Sun, 06 May 2012 01:48:08 GMT This whitepaper details some of the vulnerabilities observed over the past year while performing regular security assessments of iPhone and iPad applications. MDSec documents some of the vulnerabilities identified as well as the methods to exploit them, and recommendations that developers can adopt to protect their iOS applications. It covers not only the security features of the platform, but provides in depth information on how to perform both black box and white box iOS penetration tests, along with suggested methodologies and compliance. http://packetstormsecurity.org/files/112447/strongswan-4.6.3.tar.gz http://packetstormsecurity.org/files/112447/strongswan-4.6.3.tar.gz http://packetstormsecurity.org/files/112447/strongSwan-IPsec-Implementation-4.6.3.html Thu, 03 May 2012 22:54:20 GMT strongSwan is a complete IPsec implementation for the Linux, Android, Maemo, FreeBSD, and Mac OS X operating systems. It interoperates with with most other IPsec-based VPN products via the IKEv2 or IKEv1 key exchange protocols. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A rich choice of modular plugins adds additional features like Trusted Network Connect or advanced cryptographical algorithms. http://packetstormsecurity.org/files/112088/VL-154.txt http://packetstormsecurity.org/files/112088/VL-154.txt http://packetstormsecurity.org/files/112088/IPhone-TreasonSMS-HTML-Injection-File-Inclusion.html Mon, 23 Apr 2012 18:55:33 GMT IPhone TreasonSMS suffers from html injection and file inclusion vulnerabilities. http://packetstormsecurity.org/files/111871/APPLE-SA-2012-04-13-1.txt http://packetstormsecurity.org/files/111871/APPLE-SA-2012-04-13-1.txt http://packetstormsecurity.org/files/111871/Apple-Security-Advisory-2012-04-13-1.html Sat, 14 Apr 2012 15:55:55 GMT Apple Security Advisory 2012-04-13-1 - This update runs a malware removal tool that will remove the most common variants of the Flashback malware. If the Flashback malware is found, it presents a dialog notifying the user that malware was removed. There is no indication to the user if malware is not found. This update is available for OS X Lion systems that do not have Java installed. http://packetstormsecurity.org/files/111850/APPLE-SA-2012-04-12-1.txt http://packetstormsecurity.org/files/111850/APPLE-SA-2012-04-12-1.txt http://packetstormsecurity.org/files/111850/Apple-Security-Advisory-2012-04-12-1.html Fri, 13 Apr 2012 22:07:36 GMT Apple Security Advisory 2012-04-12-1 - Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8 is now available. As a security hardening measure, the Java browser plugin and Java Web Start are deactivated if they are unused for 35 days. Installing this update will automatically deactivate the Java browser plugin and Java Web Start. Users may re-enable Java if they encounter Java applets on a web page or Java Web Start applications. http://packetstormsecurity.org/files/111739/USN-1419-1.txt http://packetstormsecurity.org/files/111739/USN-1419-1.txt http://packetstormsecurity.org/files/111739/Ubuntu-Security-Notice-USN-1419-1.html Wed, 11 Apr 2012 14:22:06 GMT Ubuntu Security Notice 1419-1 - It was discovered that Puppet used a predictable filename when downloading Mac OS X package files. A local attacker could exploit this to overwrite arbitrary files. It was discovered that Puppet incorrectly handled filebucket retrieval requests. A local attacker could exploit this to read arbitrary files. It was discovered that Puppet incorrectly handled filebucket store requests. A local attacker could exploit this to perform a denial of service via resource exhaustion. Various other issues were also addressed. http://packetstormsecurity.org/files/111702/ZAP_1.4.0.1_Mac_OS_X.zip http://packetstormsecurity.org/files/111702/ZAP_1.4.0.1_Mac_OS_X.zip http://packetstormsecurity.org/files/111702/Zed-Attack-Proxy-1.4.0.1-Mac-OS-X-Release.html Tue, 10 Apr 2012 03:29:25 GMT The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually. Mac OS X release. http://packetstormsecurity.org/files/111594/APPLE-SA-2012-04-03-1.txt http://packetstormsecurity.org/files/111594/APPLE-SA-2012-04-03-1.txt http://packetstormsecurity.org/files/111594/Apple-Security-Advisory-2012-04-03-1.html Thu, 05 Apr 2012 01:14:57 GMT Apple Security Advisory 2012-04-03-1 - Java for OS X 2012-001 and Java for Mac OS X 10.6 Update 7 is now available. It addresses multiple vulnerabilities that exist in Java 1.6.0_29, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. http://packetstormsecurity.org/files/111585/sa48648.txt http://packetstormsecurity.org/files/111585/sa48648.txt http://packetstormsecurity.org/files/111585/Secunia-Security-Advisory-48648.html Wed, 04 Apr 2012 04:54:52 GMT Secunia Security Advisory - Apple has issued an update for Java for Mac OS X. This fixes multiple vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://packetstormsecurity.org/files/111021/safariaddressbar-spoof.tgz http://packetstormsecurity.org/files/111021/safariaddressbar-spoof.tgz http://packetstormsecurity.org/files/111021/Apple-Safari-On-iOS-5.1-Address-Bar-Spoofing.html Tue, 20 Mar 2012 19:22:22 GMT Apple Mobile Safari on iOS version 5.1 suffers from an address bar spoofing vulnerability. http://packetstormsecurity.org/files/111006/sa48454.txt http://packetstormsecurity.org/files/111006/sa48454.txt http://packetstormsecurity.org/files/111006/Secunia-Security-Advisory-48454.html Tue, 20 Mar 2012 04:06:29 GMT Secunia Security Advisory - David Vieira-Kurz has discovered a vulnerability in Apple iOS, which can be exploited by malicious people to conduct spoofing attacks. http://packetstormsecurity.org/files/110779/sa48377.txt http://packetstormsecurity.org/files/110779/sa48377.txt http://packetstormsecurity.org/files/110779/Secunia-Security-Advisory-48377.html Wed, 14 Mar 2012 05:16:27 GMT Secunia Security Advisory - Multiple vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose certain sensitive information, and compromise a user's system. http://packetstormsecurity.org/files/110716/APPLE-SA-2012-03-12-1.txt http://packetstormsecurity.org/files/110716/APPLE-SA-2012-03-12-1.txt http://packetstormsecurity.org/files/110716/Apple-Security-Advisory-2012-03-12-1.html Tue, 13 Mar 2012 00:58:40 GMT Apple Security Advisory 2012-03-12-1 - Safari version 5.1.4 is now available and addresses 84 different vulnerabilities. This includes many fixes for WebKit related issues. http://packetstormsecurity.org/files/110684/aanval-7-latest-stable.tar.gz http://packetstormsecurity.org/files/110684/aanval-7-latest-stable.tar.gz http://packetstormsecurity.org/files/110684/Aanval-Intrusion-Detection-Tool-7.html Mon, 12 Mar 2012 23:44:55 GMT Aanval is the industry's most comprehensive snort and syslog intrusion detection, correlation and management console. Aanval is designed specifically to scale from small single sensor installations to global enterprise deployments. Aanval is browser based and designed to work on all current variants of UNIX, Linux and Mac OS X. http://packetstormsecurity.org/files/110650/sa48288.txt http://packetstormsecurity.org/files/110650/sa48288.txt http://packetstormsecurity.org/files/110650/Secunia-Security-Advisory-48288.html Sun, 11 Mar 2012 05:32:13 GMT Secunia Security Advisory - A weakness and multiple vulnerabilities have been reported in Apple iOS, which can be exploited by malicious people with physical access to bypass certain security restrictions and by malicious people to disclose sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's device.