[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Format string vulnerability in Apple Remote Desktop Client- APPLE-SA-2013-10-22-6

ID: oval:org.secpod.oval:def:16093Date: (C)2013-11-26   (M)2022-10-10
Class: PATCHFamily: macos




The host is missing a security update according to Apple advisory, APPLE-SA-2013-10-22-6. The update is required to fix format string vulnerability. The flaw is present in the application, which fails to handle format string specifiers in a VNC username. Successful exploitation remote attackers to execute arbitrary code.

Platform:
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Product:
Apple Remote Desktop Client
Reference:
APPLE-SA-2013-10-22-6
CVE-2013-5135
CVE    1
CVE-2013-5135
CPE    1
cpe:/a:apple:remote_desktop_client

© SecPod Technologies