Alert GCSA-07024 - Vulnerabilita' multiple in Apple Mac OS X

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


*****************************************************************************

Alert ID : GCSA-07024
Data : 19 Febbraio 2007
Titolo : Vulnerabilita' multiple in Apple Mac OS X

*****************************************************************************

:: Descrizione del problema:

Sono state riscontrate vulnerabilita' multiple nel sistema operativo Mac OS X;
per risolverle la Apple ha rilasciato il Security Update 2007-002.


:: Piattaforme e Software interessati:

Apple Mac OS X versione 10.4.8 e precedenti
Apple Mac OS X Server versione 10.4.8 e precedenti
Apple Mac OS X versione 10.3.9 e precedenti
Apple Mac OS X Server versione 10.3.9 e precedenti


:: Impatto:

Accesso non autorizzato al sistema
Esecuzione remota di codice arbitrario
Denial of Service
Privilege Escalation.


:: Soluzioni:

Applicare l'Apple Security Update 2007-002:

http://www.apple.com/support/downloads/


:: Riferimenti:

Apple - About Security Update 2007-002:
http://docs.info.apple.com/article.html?artnum=305102

FrSirt:
http://www.frsirt.com/english/advisories/2007/0140

Secunia:
http://secunia.com/advisories/24198/

Mitre's CVE ID:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0021
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0023
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0614
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0710

-----BEGIN PGP SIGNATURE-----

iQCVAwUBRdmMMfOB+SpikaiRAQLk7gP7Bw1PT8M7AqOFihlLWo2vYxPsouftAlV0
2CNfOxkLUf7aCB8Y9lz2utl1zCQowV6bksprswLRMMeCvUBPgso2MmsatRUMxVwm
ltmP1G7f0sKVMFRXYP+MZj/9/5QMdbq4tH1QtomWVUx0lkKGS0yX8UECKdp+4KPy
0e7hO6+IdQs=
=sQr8
-----END PGP SIGNATURE-----