Howdy All. I've updated the plugin for 10.4.9/Security Update 2007-003. This update removes a number of patches for issues fixed by the Software Update:
- [MOAB-04-01-2007] - iLife iPhoto Photocast XML title Format String Vulnerability
- [MOAB-06-01-2007] - PDF Document Catalog Denial of Service Vulnerability
- [MOAB-20-01-2007] - Apple iChat aim:// URL Handler Format String Vulnerability
- Disk Image "Warn before opening" Support
The following patches remain:
- [MOAB-03-01-2007] - Apple Quicktime HREFTrack Cross-Zone Scripting vulnerability
- [MOAB-24-01-2007] - Apple Software Update Catalog Filename Format String Vulnerability (Security Update 2007-003 removes the document bindings in Software Update, but the actual bug still remains. This is not a critical issue.)
- [MOAB-26-01-2007] - Apple Installer Package Filename Format String Vulnerability
- [MOAB-27-01-2007] - Telestream Flip4Mac WMV Parsing Memory Corruption Vulnerability
You can download the binary release, or the source. GPG signatures are available for the binary and the source.