macOS < 10.13 Multiple Vulnerabilities
Critical Nessus Plugin ID 103598
SynopsisThe remote host is missing a macOS update that fixes multiple security vulnerabilities.
DescriptionThe remote host is running a version of Mac OS X that is prior to 10.10.5, 10.11.x prior to 10.11.6, 10.12.x prior to 10.12.6, or is not macOS 10.13. It is, therefore, affected by multiple vulnerabilities in the following components :
- Application Firewall
- CFNetwork Proxies
- Captive Network Assistant
- Directory Utility
- kext tools
- Mail Drafts
- Open Scripting Architecture
- Quick Look
- Remote Management
- Screen Lock
Note that successful exploitation of the most serious issues can result in arbitrary code execution.
SolutionUpgrade to macOS version 10.13 or later.