Wednesday, January 24, 2007

MOAB-24-01-2007: Apple Software Update Catalog Filename Format String Vulnerability

Software Update fails to properly handle the filename strings containing the swutmp extension. It's a affected by a typical format string vulnerability, which can lead to a denial of service condition or arbitrary code execution.

Further information:

No comments: