Mac OS X 10.9.x < 10.9.2 Multiple Vulnerabilities
Critical Nessus Plugin ID 72687
Synopsis
The remote host is missing a Mac OS X update that fixes a certificate validation weakness.
Description
The remote host is running a version of Mac OS X 10.9.x that is prior to 10.9.2. This update contains several security-related fixes for the following components :
- Apache
- ATS
- Certificate Trust Policy
- CoreAnimation
- CoreText
- curl
- Data Security
- Date and Time
- File Bookmark
- Finder
- ImageIO
- NVIDIA Drivers
- PHP
- QuickLook
- QuickTime
Note that successful exploitation of the most serious issues could result in arbitrary code execution.
Solution
Upgrade to Mac OS X 10.9.2 or later.