Mac OS X Multiple Vulnerabilities (Security Update 2009-005)

Critical Nessus Plugin ID 40945

Synopsis

The remote host is missing a Mac OS X update that fixes various security issues.

Description

The remote host is running a version of Mac OS X 10.5 or 10.4 that does not have Security Update 2009-005 applied.

This security update contains fixes for the following products :

- Alias Manager
- CarbonCore
- ClamAV
- ColorSync
- CoreGraphics
- CUPS
- Flash Player plug-in
- ImageIO
- Launch Services
- MySQL
- PHP
- SMB
- Wiki Server

Solution

Install Security Update 2009-005 or later.

See Also

http://support.apple.com/kb/HT3865

http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html

http://www.securityfocus.com/advisories/17867

Plugin Details

Severity: Critical

ID: 40945

File Name: macosx_SecUpd2009-005.nasl

Version: 1.21

Type: local

Agent: macosx

Published: 2009/09/11

Updated: 2018/07/14

Dependencies: 12634

Risk Information

Risk Factor: Critical

CVSS v2.0

Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x

Required KB Items: Host/MacOSX/packages, Host/uname

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2009/09/10

Exploitable With

CANVAS (CANVAS)

Core Impact

Reference Information

CVE: CVE-2008-2079, CVE-2008-5498, CVE-2008-6680, CVE-2009-0590, CVE-2009-0591, CVE-2009-0789, CVE-2009-0949, CVE-2009-1241, CVE-2009-1270, CVE-2009-1271, CVE-2009-1272, CVE-2009-1371, CVE-2009-1372, CVE-2009-1862, CVE-2009-1863, CVE-2009-1864, CVE-2009-1865, CVE-2009-1866, CVE-2009-1867, CVE-2009-1868, CVE-2009-1869, CVE-2009-1870, CVE-2009-2468, CVE-2009-2800, CVE-2009-2803, CVE-2009-2804, CVE-2009-2805, CVE-2009-2807, CVE-2009-2809, CVE-2009-2811, CVE-2009-2812, CVE-2009-2813, CVE-2009-2814

BID: 29106, 33002, 34256, 34357, 35759, 36350, 36354, 36355, 36357, 36358, 36359, 36360, 36361, 36363, 36364

CWE: 20, 59, 79, 94, 119, 189, 200, 264, 287, 399