Mac OS X 10.9.5 / 10.10.5 Multiple Vulnerabilities (Security Update 2016-003)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote host is missing a Mac OS X update that fixes multiple
vulnerabilities.

Description :

The remote host is running a version of Mac OS X that is 10.9.5 or
10.10.5 and is missing Security Update 2016-003. It is, therefore,
affected by multiple vulnerabilities in the following components :

- AMD
- Captive Network Assistant
- libxml2
- libxslt
- OpenGL

Note that successful exploitation of the most serious issues can
result in arbitrary code execution.

See also :

https://support.apple.com/en-us/HT206567
http://www.nessus.org/u?46de3fda

Solution :

Install Security Update 2016-003 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now