Mac OS X Multiple Vulnerabilities (Security Update 2012-004) (BEAST)

Critical Nessus Plugin ID 62213

Synopsis

The remote host is missing a Mac OS X update that fixes multiple security vulnerabilities.

Description

The remote host is running a version of Mac OS X 10.6 that does not have Security Update 2012-004 applied. This update contains multiple security-related fixes for the following components :

- Apache
- Data Security
- DirectoryService
- ImageIO
- International Components for Unicode
- Mail
- PHP
- QuickLook
- QuickTime
- Ruby

Solution

Install Security Update 2012-004 or later.

CVE: CVE-2011-3026, CVE-2011-3048, CVE-2011-3368, CVE-2011-3389, CVE-2011-3607, CVE-2011-4317, CVE-2011-4599, CVE-2012-0021, CVE-2012-0031, CVE-2012-0053, CVE-2012-0650, CVE-2012-0668, CVE-2012-0670, CVE-2012-0671, CVE-2012-0831, CVE-2012-1172, CVE-2012-1173, CVE-2012-1667, CVE-2012-1823, CVE-2012-2143, CVE-2012-2311, CVE-2012-2386, CVE-2012-2688, CVE-2012-3719, CVE-2012-3722

BID: 47545, 49778, 49957, 50494, 50802, 51006, 51407, 51705, 51706, 51954, 52049, 52830, 52891, 53388, 53403, 53579, 53582, 53584, 53729, 53772, 54638, 56240, 56241

APPLE-SA: APPLE-SA-2012-09-19-2

CERT: 864643

Mac OS X Multiple Vulnerabilities (Security Update 2012-004) (BEAST)

Synopsis

Description

Solution

See Also

Plugin Details

Risk Information

CVSS v2.0

Vulnerability Information

Exploitable With

Reference Information