Mac OS X Multiple Vulnerabilities (Security Update 2006-002)

This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.


Synopsis :

The remote operating system is missing a vendor-supplied patch.

Description :

The remote host is running Apple Mac OS X, but lacks
Security Update 2006-002.

This security update contains fixes for the following
applications :

apache_mod_php
CoreTypes
LaunchServices
Mail
Safari
rsync

See also :

http://www.nessus.org/u?12789989

Solution :

Mac OS X 10.4 :
# http://web.archive.org/web/20060314170904/http://www.apple.com/support/downloads/securityupdate2006002macosx1045ppc.html
http://www.nessus.org/u?37e197d3

Mac OS X 10.3 :
# http://web.archive.org/web/20060314170813/http://www.apple.com/support/downloads/securityupdate20060021039client.html
http://www.nessus.org/u?abc4e668
http://www.apple.com/support/downloads/securityupdate20060021039server.html

Risk factor :

High / CVSS Base Score : 7.6
(CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.0
(CVSS2#E:POC/RL:OF/RC:C)
Public Exploit Available : true

Family: MacOS X Local Security Checks

Nessus Plugin ID: 21073 (macosx_SecUpd2006-002.nasl)

Bugtraq ID: 17081

CVE ID: CVE-2006-0400
CVE-2006-0396
CVE-2006-0397
CVE-2006-0398
CVE-2006-0399