Apple Mac OS X Server

ソフト名：Apple Mac OS X Server 10.6～10.6.5
回避策：アップデートにて対応
脆弱性：機密情報の奪取, ユーザーメールの取得
ソース：http://support.apple.com/kb/HT4452
http://www.securityfocus.com/bid/44874
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4011
http://secunia.com/advisories/42278
CVE：CVE-2010-4011
危険性：Low Risk

Apple QuickTime, Apple Mac OS X, Apple Mac OS X Server

ソフト名：Apple QuickTime 7.6.6/7.6.8, Apple Mac OS X 10.5.8～10.6.4, Apple Mac OS X Server 10.5.8～10.6.4
回避策：Apple Security Update 2010-007または,アップデートにて対応
脆弱性：バッファオーバーフロー, リモートコード実行, XSS, 機密情報の奪取, セキュリティ制限の回避, アプリケーションのクラッシュ, DoS攻撃, メモリ破壊, 認証資格情報の奪取
ソース：http://support.apple.com/kb/HT4435
http://www.securityfocus.com/bid/44778
http://www.securityfocus.com/bid/44785
http://www.securityfocus.com/bid/44787
http://www.securityfocus.com/bid/44789
http://www.securityfocus.com/bid/44790
http://www.securityfocus.com/bid/44792
http://www.securityfocus.com/bid/44794
http://www.securityfocus.com/bid/44795
http://www.securityfocus.com/bid/44796
http://www.securityfocus.com/bid/44798
http://www.securityfocus.com/bid/44814
http://www.securityfocus.com/bid/44828
http://www.securityfocus.com/bid/44829
http://www.securityfocus.com/bid/44831
http://www.securityfocus.com/bid/44834
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1378
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3787
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3789
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3790
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3791
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3793
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3794
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3795
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3798
http://secunia.com/advisories/39259
http://secunia.com/advisories/42151
http://www.vupen.com/english/advisories/2010/2958
CVE：CVE-2010-1378, CVE-2010-1803, CVE-2010-3787, CVE-2010-3788, CVE-2010-3789, CVE-2010-3790, CVE-2010-3791, CVE-2010-3792, CVE-2010-3793, CVE-2010-3794, CVE-2010-3795, CVE-2010-3796, CVE-2010-3797, CVE-2010-3798
危険性：High Risk

Apple Mac OS X, Apple Mac OS X Server

ソフト名：Apple Mac OS X 10.5.8/10.6.4, Apple Mac OS X Server 10.5.8/10.6.4
回避策：Java for Mac OS X 10.6 Update 3 or Update 8にて対応
脆弱性：ローカルコマンド実行, コマンドインジェクションエラー, ローカルコード実行, メモリ破壊エラー
ソース：http://support.apple.com/kb/HT4417
http://support.apple.com/kb/HT4418
http://www.securityfocus.com/bid/44277
http://www.securityfocus.com/bid/44279
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1826
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1827
http://securitytracker.com/alerts/2010/Oct/1024616.html
http://securitytracker.com/alerts/2010/Oct/1024617.html
CVE：CVE-2010-1826, CVE-2010-1827
危険性：High Risk

Apple Mac OS X/OS X Server

ソフト名：Apple Mac OS X/OS X Server 10.6.4
回避策：Apple Security Update 2010-006にて対応
脆弱性：セキュリティ制限の回避, 不正アクセス
ソース：http://support.apple.com/kb/HT4361
http://www.securityfocus.com/bid/43341
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1820
http://secunia.com/advisories/41522
http://www.vupen.com/english/advisories/2010/2453
CVE：CVE-2010-1820
危険性：Medium Risk

Apple Mac OS X, Apple Mac OS X Server

ソフト名：Apple Mac OS X 10.5.8/10.6.4, Apple Mac OS X Server 10.5.8/10.6.4
回避策：Apple Security Update 2010-005にて対応
脆弱性：バッファオーバーフロー, マンインミドル攻撃, スプーフィング攻撃, リモートコード実行
ソース：http://support.apple.com/kb/HT4312
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1801
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1802
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1808
http://secunia.com/advisories/41087
http://www.vupen.com/english/advisories/2010/2162
CVE：CVE-2010-1800, CVE-2010-1801, CVE-2010-1802, CVE-2010-1808
危険性：High Risk

Mac OS X, Mac OS X Server

ソフト名：Apple Mac OS X 10.5.8/10.6.3, Apple Mac OS X Server 10.5.8/10.6.3
回避策：Security Update 2010-05-18-1 or 2010-05-18-2にて対応
脆弱性：リモートコード実行, アプリケーションのクラッシュ
ソース：http://support.apple.com/kb/HT4170
http://support.apple.com/kb/HT4171
http://www.securityfocus.com/bid/40238
http://www.securityfocus.com/bid/40240
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0538
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0539
http://secunia.com/advisories/39819
http://securitytracker.com/alerts/2010/May/1024011.html
http://securitytracker.com/alerts/2010/May/1024012.html
CVE：CVE-2010-0538, CVE-2010-0539
危険性：High Risk