There are new vulnerabilities in your fav OS. Mac OS X has the following:
1) An error exists in the “BOMStackPop()” function in the BOMArchiveHelper when decompressing malformed ZIP archives.
2) Some errors exists in the “KWQListIteratorImpl()”, “drawText()”, and “objc_msgSend_rtp()” functions in Safari when processing malformed HTML tags.
3) An error exists in the “ReadBMP()” function when processing malformed BMP images and can be exploited via e.g. Safari or the Preview application.
4) An error exists in the “CFAllocatorAllocate()” function when processing malformed GIF images and can be exploited via e.g. Safari when a user visits a malicious web site.
5) Two errors exists in the ” _cg_TIFFSetField ()” and “PredictorVSetField()” functions when processing malformed TIFF images and can be exploited via e.g. the Preview, Finder, QuickTime, or Safari applications.
These can be exploited by nefarious types in what amounts to a DoS and might allow them access.
Enjoy.
[tags]Mac, Vulnerability, Exploit[/tags]
