Mac OS X BIND Dynamic Update Message Handling Remote DoS (Security Update 2009-004)

medium Nessus Plugin ID 40591

Synopsis

The remote host is missing a Mac OS X update that fixes a denial of service issue.

Description

The remote host is running a version of Mac OS X 10.5 or 10.4 that does not have Security Update 2009-004 applied.

This security update contains a fix for the following product :

- bind

Solution

Install Security Update 2009-004 or later.

See Also

http://support.apple.com/kb/HT3776

http://lists.apple.com/archives/security-announce/2009/Aug/msg00003.html

http://www.securityfocus.com/advisories/17629

Plugin Details

Severity: Medium

ID: 40591

File Name: macosx_SecUpd2009-004.nasl

Version: 1.15

Type: local

Agent: macosx

Published: 8/13/2009

Updated: 5/28/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.1

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.6

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x:10.5, cpe:/o:apple:mac_os_x:10.4

Required KB Items: Host/uname, Host/MacOSX/packages

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 8/12/2009

Vulnerability Publication Date: 7/28/2009

Exploitable With

Core Impact

Reference Information

CVE: CVE-2009-0696

BID: 35848

CWE: 16