Apple Remote Desktop < 3.5.3 / 3.6.1 Information Disclosure (Mac OS X)
Medium Nessus Plugin ID 61621
The Mac OS X host has a remote management tool that is affected by an information disclosure vulnerability.
According to its version, the Admin component in the Apple Remote Desktop install on the remote host reportedly fails to encrypt data and does not issue a warning when connecting to a third-party VNC server with 'Encrypt all network data' set. This could lead to information disclosure.
Upgrade to Apple Remote Desktop 3.5.3 / 3.6.1 or later.