Mac OS X : iWork 9.x < 9.1 Multiple Vulnerabilities

This script is Copyright (C) 2011-2012 Tenable Network Security, Inc.


Synopsis :

The remote host contains an office suite that is affected by several
vulnerabilities.

Description :

The version of iWork 9.x installed on the remote Mac OS X host is
earlier than 9.1. As such, it is potentially affected by several
vulnerabilities :

- A buffer overflow in iWork's handling of Excel files in
Numbers may lead to an application crash or arbitrary
code execution. (CVE-2010-3785)

- A memory corruption issue in iWork's handling of Excel
files in Numbers may lead to an application crash or
arbitrary code execution. (CVE-2010-3786)

- A memory corruption issue in iWork's handling of
Microsoft Word files in Pages may lead to an
application crash or arbitrary code execution.
(CVE-2011-1417)

See also :

http://support.apple.com/kb/HT4830
http://lists.apple.com/archives/security-announce/2011/Jul/msg00003.html
http://www.securityfocus.com/archive/1/518976/30/0/threaded

Solution :

Apply the iWork 9.1 Update and verify the installed version of
Numbers is 2.1 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: MacOS X Local Security Checks

Nessus Plugin ID: 55693 ()

Bugtraq ID: 44799
44812
46832

CVE ID: CVE-2010-3785
CVE-2010-3786
CVE-2011-1417