Mac OS X : OS X Server < 2.2.2 Multiple Vulnerabilities
High Nessus Plugin ID 69932
SynopsisThe remote host is missing a security update for OS X Server.
DescriptionThe remote Mac OS X 10.8 host has a version of OS X Server installed that is prior to 2.2.2. It is, therefore, affected by the following vulnerabilities :
- Two vulnerabilities exist in the included ClamAV software, the most serious of which could allow an attacker to execute arbitrary code remotely.
(CVE-2013-2020 / CVE-2013-2021)
- Three vulnerabilities exist in the included PostgreSQL software, the most serious of which could result in data corruption or privilege escalation.
(CVE-2013-1899 / CVE-2013-1900 / CVE-2013-1901)
- Multiple cross-site scripting issues exist in the included Wiki Server software (CVE-2013-1034)
SolutionUpgrade to Mac OS X Server version 2.2.2 or later.