Mac OS X 10.6 < 10.6.2 Multiple Vulnerabilities

High Log Correlation Engine Plugin ID 800795

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is running a version of Mac OS X 10.6 that is older than version 10.6.2. Mac OS X 10.6.2 contains security fixes for the following products :

- Adaptive Firewall

- Apache

- Apache Protable Runtime

- Certificate Assistant

- CoreMedia

- CUPS

- DoveCot

- fetchmail

- file

- FTP Server

- Help Viewer

- ImageIO

- IOKit

- IPSec

- Kernel

- Launch Services

- libsecurity

- libxml

Login Window

- OpenLDAP

- QuickDraw Manager

QuickTime

- Screen Sharing

- Subversion

Solution

Upgrade to Mac OS X 10.6.2 or later.

See Also

support.apple.com/kb/HT3937

Plugin Details

Severity: High

ID: 800795

File Name: 800795.prm

Published: 2009/11/10

Nessus ID: 42434

Risk Information

Risk Factor: High

CVSSv2

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Patch Publication Date: 2009/11/09

Vulnerability Publication Date: 2009/11/09

Reference Information

CVE: CVE-2009-0023, CVE-2009-1191, CVE-2009-1195, CVE-2009-1574, CVE-2009-1632, CVE-2009-1890, CVE-2009-1891, CVE-2009-1955, CVE-2009-1956, CVE-2009-2202, CVE-2009-2203, CVE-2009-2285, CVE-2009-2408, CVE-2009-2809, CVE-2009-2411, CVE-2009-2412, CVE-2009-2414, CVE-2009-2416, CVE-2009-2666, CVE-2009-2798, CVE-2009-2799, CVE-2009-2808, CVE-2009-2810, CVE-2009-2818, CVE-2009-2820, CVE-2009-2823, CVE-2009-2825, CVE-2009-2830, CVE-2009-2832, CVE-2009-2834, CVE-2009-2835, CVE-2009-2836, CVE-2009-2837, CVE-2009-2839, CVE-2009-3225, CVE-2009-2819, CVE-2009-2824, CVE-2009-2826, CVE-2009-2827, CVE-2009-2828, CVE-2009-2829, CVE-2009-2831, CVE-2009-2833, CVE-2009-2838, CVE-2009-2840

BID: 35221, 35888, 36956, 36963, 36964, 36974, 36975, 36977, 36979, 36983, 36984, 36985, 36987, 36990