Download
| Alert*
|
oval:org.secpod.oval:def:602170
Fernando Muñoz discovered that invalid HTML input passed to tidy, an HTML syntax checker and reformatter, could trigger a buffer overflow. This could allow remote attackers to cause a denial of service or potentially execute arbitrary code. Geoff McLane also discovered that a similar iss ... oval:org.secpod.oval:def:30961 The host is missing a security update according to Apple advisory, APPLE-SA-2015-09-30-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code, dis ... oval:org.secpod.oval:def:52536 tidy: HTML syntax checker and reformatter HTML Tidy could be made to crash or run programs if it processed specially crafted data. oval:org.secpod.oval:def:702678 tidy: HTML syntax checker and reformatter HTML Tidy could be made to crash or run programs if it processed specially crafted data. oval:org.secpod.oval:def:30959 The host is installed with Apple Mac OS X or Server 10.6.8 before 10.11 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle vectors involving multiple whitespace characters before an empty href. Successful exploitation coul ... |
