<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.MsoNoSpacing, li.MsoNoSpacing, div.MsoNoSpacing
{mso-style-priority:1;
margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.EmailStyle20
{mso-style-type:personal;
font-family:"Arial",sans-serif;
color:windowtext;}
span.EmailStyle21
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:#1F497D;}
span.EmailStyle22
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:106773845;
mso-list-type:hybrid;
mso-list-template-ids:1758483444 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l0:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l0:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l0:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l0:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l0:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l1
{mso-list-id:339427835;
mso-list-template-ids:-751658012;}
@list l1:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level2
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level5
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level8
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2
{mso-list-id:580605032;
mso-list-type:hybrid;
mso-list-template-ids:-640410410 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l2:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3
{mso-list-id:1169716846;
mso-list-type:hybrid;
mso-list-template-ids:822785468 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l3:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l4
{mso-list-id:1907377490;
mso-list-type:hybrid;
mso-list-template-ids:367197452 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l4:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l4:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l4:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l4:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l4:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l4:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l4:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l4:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l4:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal"><span style="color:#1F497D">Please see the additional advisory from MS-ISAC regarding vulnerabilities in Apple Products. Recommendations include.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">• Apply appropriate patches provided by Apple to vulnerable systems immediately after appropriate testing.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">• Run all software as a non-privileged user (one without administrative privileges) to diminish the effects of a successful attack.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">• Remind users not to download, accept, or execute files from un-trusted or unknown sources.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">• Remind users not to visit untrusted websites or follow links provided by unknown or un-trusted sources.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">• Apply the Principle of Least Privilege to all systems and services.<o:p></o:p></span></p>
<div>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Thank you,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Thor<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Thor Sage<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Executive Director<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Miami Valley Educational Computer Association<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">937-767-1468 x3101<o:p></o:p></span></p>
<p class="MsoNormal"><a href="http://www.mveca.org/"><span style="color:#1F497D;text-decoration:none"><img border="0" width="174" height="64" style="width:1.8125in;height:.6666in" id="_x0000_i1033" src="cid:image006.jpg@01D7157E.CED24BB0" alt="http://www.mveca.org/images/logo.gif"></span></a><span style="color:#1F497D">
</span><a href="https://www.linkedin.com/company/mveca/"><span style="color:#1F497D;text-decoration:none"><img border="0" width="32" height="32" style="width:.3333in;height:.3333in" id="_x0000_i1032" src="cid:image007.jpg@01D7157E.CED24BB0" alt="i"></span></a><a href="https://twitter.com/mvecarcog"><span style="color:#1F497D;text-decoration:none"><img border="0" width="32" height="32" style="width:.3333in;height:.3333in" id="_x0000_i1031" src="cid:image008.jpg@01D7157E.CED24BB0" alt="t"></span></a><a href="https://www.facebook.com/MVECA-707401659416692/"><span style="color:#1F497D;text-decoration:none"><img border="0" width="32" height="32" style="width:.3333in;height:.3333in" id="_x0000_i1030" src="cid:image009.jpg@01D7157E.CED24BB0" alt="f"></span></a><span style="color:#1F497D"><o:p></o:p></span></p>
<p class="MsoNormal"><i><span style="color:#1F497D">Not-for-profit Technology Services for Education and Local Governments<o:p></o:p></span></i></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
</div>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b>From:</b> MS-ISAC Advisory <MS-ISAC.Advisory@msisac.org> <br>
<b>Sent:</b> Tuesday, March 9, 2021 9:20 PM<br>
<b>To:</b> Michael Aliperti <Michael.Aliperti@cisecurity.org><br>
<b>Subject:</b> MS-ISAC CYBERSECURITY ADVISORY - A Vulnerability in Apple Products Could Allow for Arbitrary Code Execution - PATCH: NOW - TLP: WHITE<br>
<b>Importance:</b> High<o:p></o:p></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif;color:red"> </span></b><o:p></o:p></p>
<p class="MsoNoSpacing" align="center" style="text-align:center"><b><span style="font-family:"Arial",sans-serif">TLP: WHITE</span></b><o:p></o:p></p>
<p class="MsoNoSpacing" align="center" style="text-align:center"><b><span style="font-family:"Arial",sans-serif">MS-ISAC CYBERSECURITY ADVISORY</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">MS-ISAC ADVISORY NUMBER:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif">2021-033</span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">DATE(S) ISSUED:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif">03/09/2021</span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">SUBJECT:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif">A Vulnerability in Apple Products Could Allow for Arbitrary Code Execution</span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">OVERVIEW:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif">Multiple vulnerabilities have been discovered in Apple products, the most severe of which could allow for arbitrary code execution.</span><o:p></o:p></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="mso-list:l3 level1 lfo1"><span style="font-family:"Arial",sans-serif">macOS Big Sur is a desktop operating system for Macintosh computers.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l3 level1 lfo1"><span style="font-family:"Arial",sans-serif">watchOS is a mobile operating system created & developed by Apple to be utilized by its Apple Watch product line.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l3 level1 lfo1"><span style="font-family:"Arial",sans-serif">iOS is a mobile operating system created & developed by Apple to be utilized by its mobile devices such as the iPhone.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l3 level1 lfo1"><span style="font-family:"Arial",sans-serif">Safari is a web browser available for macOS.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l3 level1 lfo1"><span style="font-family:"Arial",sans-serif">iPadOS is a mobile operating system created & developed by Apple to be utilized by its iPad product line.</span><o:p></o:p></li></ul>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif">Successful exploitation of this vulnerability could result in arbitrary code execution within the context of the application, an attacker gaining the same privileges as the logged-on user, or
the bypassing of security restrictions. Depending on the permission associated with the application running the exploit, an attacker could then install programs; view, change, or delete data.</span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">THREAT INTELLIGENCE:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif">There are no reports of these vulnerabilities being exploited in the wild.</span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">SYSTEMS AFFECTED:</span></b><o:p></o:p></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="mso-list:l0 level1 lfo2"><span style="font-family:"Arial",sans-serif">watchOS versions prior to 7.3.2</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l0 level1 lfo2"><span style="font-family:"Arial",sans-serif">macOS versions prior to Big Sur 11.2.3</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l0 level1 lfo2"><span style="font-family:"Arial",sans-serif">iOS versions prior to 14.4.1</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l0 level1 lfo2"><span style="font-family:"Arial",sans-serif">iPadOS versions prior to 14.4.1</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l0 level1 lfo2"><span style="font-family:"Arial",sans-serif">Safari versions prior to 14.0.3</span><o:p></o:p></li></ul>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">RISK:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">Government:</span></b><o:p></o:p></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="mso-list:l4 level1 lfo3"><span style="font-family:"Arial",sans-serif">Large and medium government entities:<b> High</b></span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l4 level1 lfo3"><span style="font-family:"Arial",sans-serif">Small government entities: <b>High</b></span><o:p></o:p></li></ul>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">Businesses:</span></b><o:p></o:p></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="mso-list:l2 level1 lfo4"><span style="font-family:"Arial",sans-serif">Large and medium business entities: <b>High</b></span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l2 level1 lfo4"><span style="font-family:"Arial",sans-serif">Small business entities: <b>High</b></span><o:p></o:p></li></ul>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">Home users: Low</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">TECHNICAL SUMMARY:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif">A vulnerability has been discovered in Apple products, which could allow for arbitrary code execution. This vulnerability occurs when processing a specially crafted web content due to a memory
corruption issue. </span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif">Successful exploitation of this vulnerability could result in arbitrary code execution within the context of the application, an attacker gaining the same privileges as the logged-on user, or
the bypassing of security restrictions. Depending on the permission associated with the application running the exploit, an attacker could then install programs; view, change, or delete data.</span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">RECOMMENDATIONS:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif">We recommend the following actions be taken:</span><o:p></o:p></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="mso-list:l1 level1 lfo5"><span style="font-family:"Arial",sans-serif">Apply appropriate patches provided by Apple to vulnerable systems immediately after appropriate testing.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l1 level1 lfo5"><span style="font-family:"Arial",sans-serif">Run all software as a non-privileged user (one without administrative privileges) to diminish the effects of a successful attack.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l1 level1 lfo5"><span style="font-family:"Arial",sans-serif">Remind users not to download, accept, or execute files from un-trusted or unknown sources.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l1 level1 lfo5"><span style="font-family:"Arial",sans-serif">Remind users not to visit untrusted websites or follow links provided by unknown or un-trusted sources.</span><o:p></o:p></li><li class="MsoNormal" style="mso-list:l1 level1 lfo5"><span style="font-family:"Arial",sans-serif">Apply the Principle of Least Privilege to all systems and services.</span><o:p></o:p></li></ul>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">REFERENCES:</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">Apple:
</span></b><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"><a href="https://support.apple.com/en-us/HT212220">https://support.apple.com/en-us/HT212220</a></span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"><a href="https://support.apple.com/en-us/HT212221">https://support.apple.com/en-us/HT212221</a></span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"><a href="https://support.apple.com/en-us/HT212222">https://support.apple.com/en-us/HT212222</a></span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"><a href="https://support.apple.com/en-us/HT212223">https://support.apple.com/en-us/HT212223</a></span><o:p></o:p></p>
<p class="MsoNoSpacing"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNoSpacing"><b><span style="font-family:"Arial",sans-serif">CVE:</span></b><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif"><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1844">https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1844</a></span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif">24x7 Security Operations Center<br>
Multi-State Information Sharing and Analysis Center (MS-ISAC)<br>
Elections Infrastructure Information Sharing and Analysis Center (EI-ISAC)<br>
31 Tech Valley Drive<br>
East Greenbush, NY 12061<br>
<a href="mailto:SOC@cisecurity.org">SOC@cisecurity.org</a> - 1-866-787-4722</span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif"><img border="0" width="278" height="47" style="width:2.8958in;height:.4895in" id="Picture_x0020_1" src="cid:image001.jpg@01D7152A.01CBEB70" alt="cid:image001.jpg@01D6B39F.D0094A10"></span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif"> <img border="0" width="32" height="33" style="width:.3333in;height:.3437in" id="Picture_x0020_2" src="cid:image002.png@01D7152A.01CBEB70" alt="cid:image002.png@01D6B39F.D0094A10"> <img border="0" width="32" height="33" style="width:.3333in;height:.3437in" id="Picture_x0020_3" src="cid:image003.png@01D7152A.01CBEB70" alt="cid:image003.png@01D6B39F.D0094A10"> <img border="0" width="32" height="33" style="width:.3333in;height:.3437in" id="Picture_x0020_4" src="cid:image004.png@01D7152A.01CBEB70" alt="cid:image004.png@01D6B39F.D0094A10"> <img border="0" width="32" height="33" style="width:.3333in;height:.3437in" id="Picture_x0020_5" src="cid:image005.png@01D7152A.01CBEB70" alt="cid:image005.png@01D6B39F.D0094A10"></span><o:p></o:p></p>
<p class="MsoNormal" align="center" style="text-align:center;text-autospace:none">
<b><span style="font-family:"Arial",sans-serif"> </span></b><o:p></o:p></p>
<p class="MsoNoSpacing" align="center" style="text-align:center"><b><span style="font-family:"Arial",sans-serif">TLP: WHITE</span></b><o:p></o:p></p>
<p class="MsoNoSpacing" align="center" style="text-align:center"><b><span style="font-family:"Arial",sans-serif">Disclosure is not limited. Subject to standard copyright rules, TLP: WHITE information may be distributed without restriction.<br>
</span></b><a href="http://www.us-cert.gov/tlp/"><b><span style="font-family:"Arial",sans-serif;text-decoration:none">http://www.us-cert.gov/tlp/</span></b></a><o:p></o:p></p>
<p class="MsoNormal"><span style="font-family:"Arial",sans-serif"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Times New Roman",serif">This message and attachments may contain confidential information. If it appears that this message was sent to you by mistake, any retention, dissemination, distribution
or copying of this message and attachments is strictly prohibited. Please notify the sender immediately and permanently delete the message and any attachments.
<br>
<br>
. . . . .<o:p></o:p></span></p>
</div>
</body>
</html>