“Month of Apple Bugs” project. Its interesting and helpful read.
http://projects.info-pull.com/moab/
Some individual bugs that have been published, some with epxploits, that can help illustrate tehcniques and also help to demonstrate the way the Apple security community is thingking. One finding by Dino Zaovi, as in the links below,
Matasano Link 1, Matasano Link 2
An interesting format string bug in the launchd daemon was used by Kevin Finisterre (”Non Executable Stack Lovin on OSX86″ at:http://www.digitalmunition.com/NonExecutableLovin.txt ) to illustrate a technique to bypass the nonexecutable stack feature of OS X on intel.
http://www.digitalmunition.com/dma.html
http://osvdb.org/search?request=apple
Ija van Sprundel found a vulnerability in the ping and traceroute programs in OS X that can allow a local user to obtain root access:
http://www.suresec.org/advisories/adv8.pdf
http://www.suresec.org/advisories/adv10.pdf
http://www.suresec.org/advisories/adv11.pdf
Common Vulnerabilities and Exposures (CVE) entries for Apple Bugs:
http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=apple
Recent Comments