Mac OS X Multiple Vulnerabilities (Security Update 2005-008)

high Nessus Plugin ID 19773

Synopsis

The remote operating system is missing a vendor-supplied patch.

Description

The remote host is running Apple Mac OS X, but lacks Security Update 2005-008.

This security update contains fixes for the following applications :

- ImageIO
- LibSystem
- Mail
- QuickDraw
- Ruby
- SecurityAgent
- securityd

Solution

Mac OS X 10.4 :
http://support.apple.com/downloads/Security_Update_2005_008__Mac_OS_X_10_4_2_

Mac OS X 10.3 :
http://support.apple.com/downloads/Security_Update_2005_008__Mac_OS_X_10_3_9_

See Also

http://www.nessus.org/u?b7db6d8b

Plugin Details

Severity: High

ID: 19773

File Name: macosx_SecUpd2005-008.nasl

Version: 1.20

Type: local

Agent: macosx

Published: 9/23/2005

Updated: 5/28/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.6

Temporal Score: 5.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x:10.3, cpe:/o:apple:mac_os_x:10.4

Required KB Items: Host/MacOSX/packages

Exploit Ease: No known exploits are available

Patch Publication Date: 6/22/2005

Vulnerability Publication Date: 6/22/2005

Reference Information

CVE: CVE-2005-1992, CVE-2005-2524, CVE-2005-2741, CVE-2005-2742, CVE-2005-2743, CVE-2005-2744, CVE-2005-2745, CVE-2005-2746, CVE-2005-2747, CVE-2005-2748

BID: 14914, 14939