Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0018

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2009-0018
Last Modified 07 Mar 2011 10:17:46
Published 12 Feb 2009 07:30:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-0018

Summary

The Remote Apple Events server in Apple Mac OS X 10.4.11 and 10.5.6 does not properly initialize a buffer, which allows remote attackers to read portions of memory.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.4.11

  • Apple Mac Os X 10.5.6

  • Apple Mac Os X Server 10.4.11

  • Apple Mac Os X Server 10.5.6


References

VUPEN - ADV-2009-0422

BID - 33816

BID - 33759

CONFIRM - http://support.apple.com/kb/HT3438

SECUNIA - 33937

APPLE - APPLE-SA-2009-02-12

Related Patches

Apple 2009-02-12 Security Update 2009-001 Server (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 Server (Tiger Intel)

Apple 2009-02-12 Security Update 2009-001 (Tiger Intel)


Last Updated: 27 May 2016 10:49:33