Apple Xcode < 7.1 (Mac OS X)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote Mac OS X host has an application installed that is affected
by a vulnerability due to unexpected type conversions.

Description :

The version of Apple Xcode installed on the remote Mac OS X host is
prior to 7.1. It is, therefore, affected by a vulnerability in
Swift-based programs due to unexpected values being returned for
certain type conversions. An unauthenticated, remote attacker can
exploit this, by manipulating return values, to circumvent controls in
program logic.

See also :

https://support.apple.com/en-us/HT205379
http://www.nessus.org/u?5dcab90b

Solution :

Upgrade to Apple Xcode version 7.1, which is available for OS X
version 10.10.5 (Yosemite) or later.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: MacOS X Local Security Checks

Nessus Plugin ID: 86570 ()

Bugtraq ID:

CVE ID: CVE-2015-7030

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now