SillyDog701

[Antony]

Apple released Security Update 2006-002 for Mac OS X 10.4.5 and 10.3.9.

Security Update 2006-002 is recommended for all users and improves the reliability and security of the following components:

apache_mod_php
CoreTypes
LaunchServices
Mail
Safari
rsync

More detail about this security update: http://docs.info.apple.com/article.html?artnum=303453

Security Update 2006-002 Mac OS X 10.4.5 (PPC) (13.9 MB)
Security Update 2006-002 Mac OS X 10.4.5 Client (Intel) (15.4 MB)
Security Update 2006-002 (10.3.9 Client) (25.3 MB)

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/417.9 (KHTML, like Gecko) Safari/417.8

[Antony]

Security Update updates following:
CoreTypes
CVE-ID: CVE-2006-0400
Impact: Remote web sites can cause JavaScript to bypass the same-origin policy

Mail
CVE-ID: CVE-2006-0396
Impact: Double-clicking an attachment in Mail may result in arbitrary code execution

Safari, LaunchServices, CoreTypes
CVE-ID: CVE-2006-0397, CVE-2006-0398, CVE-2006-0399
Impact: Viewing a malicious web site may result in arbitrary code execution

Safari is also updated to version 2.0.3 (417.9.2)

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/417.9 (KHTML, like Gecko) Safari/417.9.2

[J-M]

This has been assigned to Extremely Critical Secunia advisory today, link to advisory:
http://secunia.com/advisories/19129/

Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.

1) Under certain circumstances, it is possible for JavaScript to bypass the same-origin policy via specially crafted archives.

2) A boundary error in Mail can be exploited to cause a buffer overflow via a specially crafted email. This allows execution of arbitrary code on a user's system if a specially crafted attachment is double-clicked.

3) An error in Safari / LaunchServices can cause a malicious application to appear as a safe file type. This may cause a malicious file to be executed automatically when visiting a malicious web site.

UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.0; fi-FI; rv:1.7.12) Gecko/20050919 Firefox/1.0.7

[Antony]

This has been assigned to Extremely Critical Secunia advisory today, link to advisory:
http://secunia.com/advisories/19129/

Description:
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.

I don't usually pay much attention to the Secunia's rating. The description is more important. Secunia has made non-understandable descriptions in the past.

Now, for this case, shouldn't Secunia focused on fixed instead of it was (so-called) Extremely Critical?

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/417.9 (KHTML, like Gecko) Safari/417.9.2

[Antony]

This Security Update breaks [sdt=10509]Shiira 1.2.1[/sdt].

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/417.9 (KHTML, like Gecko) Safari/417.9.2

[Antony]

Security Update 2006-002 v1.1

Apple released an update to Security Update 2006-002 released early this week for Mac OS X 10.4.5.

Security Update 2006-002 is recommended for all users and improves the reliability and security of the following components:

apache_mod_php
CoreTypes
LaunchServices
Mail
Safari
rsync

More detail about this security update: http://www.info.apple.com/kbnum/n61798

Security Update 2006-002 Mac OS X 10.4.5 (PPC) (13.9 MB)
Security Update 2006-002 Mac OS X 10.4.5 Client (Intel) (15.4 MB)

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/417.9 (KHTML, like Gecko) Safari/417.9.2

[J-M]

I don't usually pay much attention to the Secunia's rating. The description is more important. Secunia has made non-understandable descriptions in the past.

Yes, sometimes it's just easy to use titles like Extremely Critical, French-based FrSIRT used their highest Critical level as well:
http://www.frsirt.com/english/advisories/2006/0949

UserAgent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; fi; rv:1.8.0.1) Gecko/20060111 Firefox/1.5.0.1