Download
| Alert*
oval:org.secpod.oval:def:3860
The host is installed with Apple Mac OS X 10.5.8 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a macro invocation through invalid buffer. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:301491 Tavis Ormandy of Google Security discovered an invalid pointer flaw in unzip that could lead to the execution of arbitrary code with the privileges of the user running unzip. The updated packages have been patched to correct this issue. oval:org.mitre.oval:def:8229 Tavis Ormandy discovered that unzip, when processing specially crafted ZIP archives, could pass invalid pointers to the C library"s free routine, potentially leading to arbitrary code execution (CVE-2008-0888). oval:org.secpod.oval:def:1000251 The host is missing a patch 114194-12 containing security fixes. oval:org.secpod.oval:def:1000316 The host is missing a patch 112951-15 containing security fixes. |