Apple Mac OS X IWork 9.1 Update Network Vulnerability

Summary

This host is missing an important security update according to Mac OS X iWork 9.1 Update.

Impact

Successful exploitation could allow attackers to opening a maliciously crafted files, which leads to an unexpected application termination or arbitrary code execution. Impact Level: System/Application

Solution

Apply the update from below link For updates refer to http://support.apple.com/downloads/DL1097/en_US/iWork9.1Update.dmg

Insight

The flaws are due to - a buffer overflow error, while handling the 'Excel' files. - a memory corruption issue, while handling the 'Excel' files and Microsoft Word documents.

Affected

Mac OS X iwork version 9.0 through 9.0.5

References

http://support.apple.com/kb/HT4684

Updated on 2017-03-28

Severity

Classification

CVE CVE-2010-3785, CVE-2010-3786, CVE-2011-1417

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apple Mac OS X Keychain Certificate Settings Security Bypass Vulnerability
Mac OS X 'Internet plug-ins' Unspecified Vulnerability (2012-003)
Apple Mac OS X iWork 9.1 Update
Microsoft Silverlight Information Disclosure Vulnerability-2890788 (Mac OS X)
Apple Mac OS X PackageKit Format String Vulnerability

Take action and discover your vulnerabilities