Download
| Alert*
oval:org.secpod.oval:def:17223
The host is installed with Apple Safari before 3.2 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted XML document. Successful exploitation could allow attackers to crash the service or execute arbitrary code. oval:org.secpod.oval:def:301432 A buffer overflow vulnerability in libxslt could be exploited via an XSL style sheet file with a long XLST transformation match condition, which could possibly lead to the execution of arbitrary code . The updated packages have been patched to correct this issue. oval:org.mitre.oval:def:7984 It was discovered that libxslt, an XSLT processing runtime library, could be coerced into executing arbitrary code via a buffer overflow when an XSL style sheet file with a long XSLT "transformation match" condition triggered a large number of steps. oval:org.secpod.oval:def:17233 The host is missing a security update according to Apple advisory, APPLE-SA-2008-11-13. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to obtain sensitive inf ... oval:org.secpod.oval:def:1000089 The host is missing a patch 125731-06 containing security fixes. oval:org.secpod.oval:def:1000050 The host is missing a patch 125732-06 containing security fixes. |