Dino Dai Zovi

Name of the Vulnerable Software and Affected Versions: Apple Safari versions prior to 4.0 Description: The issue allows remote attackers to determine the existence of arbitrary files via a crafted HTML document, specifically by referencing file: URLs within audio and video elements. Recommendations: For versions prior to 4.0, update to version 4.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mach kernel versions used in Mac OS X 10.4 through 10.4.7 Mach kernel versions used in OpenStep before 4.2 **Description** The issue allows local users to gain privileges via a parent process that forces an exception in a setuid child and uses Mach exception ports to modify the child's thread context and task address space. This modification causes the child to call a parent-controlled function. **Recommendations** For Mac OS X 10.4 through 10.4.7, update to a version outside of this range to resolve the issue. For OpenStep before 4.2, update to version 4.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions 10.3.9 through 10.4.7 **Description** The issue is related to an integer overflow in the AFP Server, which can be exploited by remote attackers to cause a denial of service (crash) and potentially execute arbitrary code. The exact vectors used for the exploitation are not specified. **Recommendations** For Apple Mac OS X versions 10.3.9 through 10.4.7, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Java version 1.4.2 before Release 2 **Description** The issue allows local users to gain privileges through unspecified attack vectors related to the utility used to update Java shared archives. **Recommendations** For Java version 1.4.2 before Release 2, update to Release 2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mac OS X versions 10.3.9 and earlier QuickTime versions 6.52 and earlier **Description** The issue allows untrusted applets to call arbitrary functions in system libraries, which can lead to remote attackers executing arbitrary code. This flaw may result in a loss of integrity and potentially allow malicious users to gain access to unauthorized privileges. **Recommendations** For Mac OS X version 10.3.9 and earlier, consider disabling the Java extensions for QuickTime until a patch is available. For QuickTime versions 6.52 and earlier, restrict the use of untrusted applets to minimize the risk of exploitation. As a temporary workaround, consider disabling the ability for applets to call arbitrary functions from within system libraries until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mac OS X versions prior to 10.3.9 **Description** A heap-based buffer overflow issue exists in the syscall emulation functionality, allowing local users to cause a denial of service, potentially leading to a kernel panic, and possibly execute arbitrary code via crafted parameters. **Recommendations** For Mac OS X versions prior to 10.3.9, update to version 10.3.9 or later to resolve the issue.