Mac OS X Multiple Vulnerabilities (Security Update 2006-002)

high Nessus Plugin ID 21073

Synopsis

The remote operating system is missing a vendor-supplied patch.

Description

The remote host is running Apple Mac OS X, but lacks Security Update 2006-002.

This security update contains fixes for the following applications :

apache_mod_php CoreTypes LaunchServices Mail Safari rsync

Solution

Mac OS X 10.4 :
# http://web.archive.org/web/20060314170904/http://www.apple.com/support/downloads/securityupdate2006002macosx1045ppc.html http://www.nessus.org/u?37e197d3

Mac OS X 10.3 :
# http://web.archive.org/web/20060314170813/http://www.apple.com/support/downloads/securityupdate20060021039client.html http://www.nessus.org/u?abc4e668 http://www.apple.com/support/downloads/securityupdate20060021039server.html

See Also

http://www.nessus.org/u?12789989

Plugin Details

Severity: High

ID: 21073

File Name: macosx_SecUpd2006-002.nasl

Version: 1.19

Type: local

Agent: macosx

Published: 3/14/2006

Updated: 5/28/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: High

Base Score: 7.6

Temporal Score: 6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x:10.3, cpe:/o:apple:mac_os_x:10.4

Required KB Items: Host/MacOSX/packages

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/13/2006

Vulnerability Publication Date: 3/11/2006

Reference Information

CVE: CVE-2006-0396, CVE-2006-0397, CVE-2006-0398, CVE-2006-0399, CVE-2006-0400

BID: 17081

CWE: 94