Mac OS X Multiple Vulnerabilities (Security Update 2008-003)

critical Nessus Plugin ID 32478

Synopsis

The remote host is missing a Mac OS X update that fixes various security issues.

Description

The remote host is running a version of Mac OS X 10.4 that does not have the security update 2008-003 applied.

This update contains security fixes for a number of programs.

Solution

Install Security Update 2008-003 or later.

See Also

http://support.apple.com/kb/HT1897

http://lists.apple.com/archives/security-announce/2008/May/msg00001.html

http://www.securityfocus.com/advisories/14755

Plugin Details

Severity: Critical

ID: 32478

File Name: macosx_SecUpd2008-003.nasl

Version: 1.32

Type: local

Agent: macosx

Published: 5/29/2008

Updated: 5/28/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x:10.4

Required KB Items: Host/uname, Host/MacOSX/packages

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/28/2008

Vulnerability Publication Date: 12/13/2005

Exploitable With

CANVAS (CANVAS)

Core Impact

Metasploit (Apache Module mod_rewrite LDAP Protocol Buffer Overflow)

Reference Information

CVE: CVE-2005-3352, CVE-2005-3357, CVE-2006-3747, CVE-2007-0071, CVE-2007-1863, CVE-2007-3847, CVE-2007-4465, CVE-2007-5000, CVE-2007-5266, CVE-2007-5268, CVE-2007-5269, CVE-2007-5275, CVE-2007-6019, CVE-2007-6359, CVE-2007-6388, CVE-2007-6612, CVE-2008-0177, CVE-2008-1027, CVE-2008-1028, CVE-2008-1030, CVE-2008-1031, CVE-2008-1032, CVE-2008-1033, CVE-2008-1034, CVE-2008-1035, CVE-2008-1036, CVE-2008-1571, CVE-2008-1572, CVE-2008-1573, CVE-2008-1574, CVE-2008-1575, CVE-2008-1576, CVE-2008-1577, CVE-2008-1578, CVE-2008-1579, CVE-2008-1580, CVE-2008-1654, CVE-2008-1655

BID: 15834, 25489, 25957, 26840, 26930, 27133, 27642, 28694, 29480, 29481, 29483, 29484, 29486, 29487, 29488, 29489, 29490, 29491, 29492, 29493, 29500, 29501, 29511, 29513, 29514, 29520, 29521

CWE: 119, 189, 20, 200, 22, 264, 352, 399, 79, 94

Secunia: 30430