Archived Content

In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
Alert

Apple Updates for Multiple Vulnerabilities

Last Revised
Alert Code
TA09-218A

Systems Affected

  • Apple Mac OS X versions prior to and including 10.4.11 (Tiger) and 10.5.7 (Leopard)
  • Apple Mac OS X Server versions prior to and including 10.4.11 (Tiger) and 10.5.7 (Leopard)

Overview

Apple has released Mac OS X v10.5.8 / Security Update 2009-003 to correct multiple vulnerabilities affecting components of Apple Mac OS X and Mac OS X Server. Attackers could exploit these vulnerabilities to execute arbitrary code, gain access to sensitive information, or cause a denial of service.

Apple Mac OS X v10.5.8 / Security Update 2009-003 addresses a number of vulnerabilities affecting Apple Mac OS X and Mac OS X Server. These updates also address vulnerabilities in other vendors' products that ship with Apple Mac OS X or Mac OS X Server.

Impact

The impact of these vulnerabilities vary. Potential consequences include arbitrary code execution, sensitive information disclosure, denial of service, or privilege escalation.

Solution

Install Apple Mac OS X v10.5.8 / Security Update 2009-003.  These and other updates are available via Software Update or via Apple Downloads.

References

Security Update 2009-003 / Mac OS X v10.5.8
Mac OS X: Updating your software
Apple Downloads

Revisions

August 06, 2009: Updated

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts

We recently updated our anonymous product survey; we welcome your feedback.