U.S. Flag Official website of the Department of Homeland Security

Alert (TA09-133A)

Apple Updates for Multiple Vulnerabilities

Original release date: May 13, 2009 | Last revised: January 23, 2013

Systems Affected

  • Apple Mac OS X versions prior to and including 10.4.11 (Tiger) and 10.5.6 (Leopard)
  • Apple Mac OS X Server versions prior to and including 10.4.11 (Tiger) and 10.5.6 (Leopard)
  • Safari 3 for Windows, Mac OS X 10.4, and Mac OS X 10.5

Overview

Apple has released multiple Security Updates, 2009-002 / Mac OS X version 10.5.7 and Safari 3.2.3, to correct multiple vulnerabilities affecting Apple Mac OS X, Mac OS X Server, and the Safari web browser. Attackers could exploit these vulnerabilities to execute arbitrary code, gain access to sensitive information, or cause a denial of service.

Description

Apple Security Update 2009-002 / Mac OS X v10.5.7 addresses a number of vulnerabilities affecting Apple Mac OS X and Mac OS X Server, the Safari security update addresses vulnerabilities affecting the Safari web browser (for Windows and OS X). These updates also address vulnerabilities in other vendors' products that ship with Apple Mac OS X or Mac OS X Server.

Impact

The impacts of these vulnerabilities vary. Potential consequences include arbitrary code execution, sensitive information disclosure, denial of service, or privilege escalation.

Solution

Install Apple Security Update 2009-002 / Mac OS X v10.5.7, or Safari 3.2.3. These and other updates are available via Software Update or via Apple Downloads.

References

Revisions

  • May 13, 2009: Updated
  • May 13, 2009: Updated

This product is provided subject to this Notification and this Privacy & Use policy.

Was this document helpful?  Yes  |  Somewhat  |  No

Back to Top