Format String Vulnerability in Apple Screen Sharing Server and Remote Desktop
CVE-2013-5135

Currently unrated

Key Information:

Vendor

Apple
Status
Apple Remote Desktop
Vendor
CVE Published:
24 October 2013

What is CVE-2013-5135?

A format string vulnerability exists in the Screen Sharing Server feature of Apple Mac OS X prior to version 10.9 and in Apple Remote Desktop prior to version 3.5.4. This flaw permits remote attackers to execute arbitrary code by supplying crafted format string specifiers in a VNC username. Successful exploitation could allow an attacker to compromise the integrity and confidentiality of the affected system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://lists.apple.com/archives/security-announce/2013/Oc...
vendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2013/Oc...
vendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2013/Oc...
vendor-advisoryx_refsource_APPLE

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.