Mac OS X Multiple Vulnerabilities (Security Update 2005-005)

High Log Correlation Engine Plugin ID 800799

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is missing Security Update 2005-005. This security
update contains security fixes for the following application :

- Apache
- AppKit
- AppleScript
- Bluetooth
- Directory Services
- Finder
- Foundation
- HelpViewer
- LDAP
- libXpm
- lukemftpd
- NetInfo
- ServerAdmin
- sudo
- Terminal
- VPN

Solution

Apply Security Update 2005-005.

See Also

http://docs.info.apple.com/article.html?artnum=301528

http://www.securityfocus.com/archive/1/397306

Plugin Details

Severity: High

ID: 800799

Nessus ID: 18352, 18189

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 8.3

Temporal Score: 6.1

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Exploitable With

CANVAS (D2ExploitPack)

Reference Information

CVE: CVE-2004-0888, CVE-2004-0889, CVE-2005-0206, CVE-2005-1430, CVE-2004-0914, CVE-2004-0692, CVE-2005-1344, CVE-2004-1308, CVE-2005-1330, CVE-2005-1331, CVE-2005-1332, CVE-2005-1333, CVE-2005-1335, CVE-2005-0342, CVE-2005-1336, CVE-2005-1337, CVE-2005-1338, CVE-2004-0687, CVE-2004-0688, CVE-2005-1339, CVE-2005-1340, CVE-2004-1051, CVE-2005-1341, CVE-2005-1342, CVE-2005-1343

BID: 11196, 11501, 11668, 11694, 12458, 13537, 13467, 13480, 13486, 13488, 13491, 13496, 13494, 13500, 13502, 13503