Apple Xcode < 6.0.1 (Mac OS X)

Medium Nessus Plugin ID 77863


The remote host has an application installed that is affected by a denial of service vulnerability.


The remote Mac OS X host has a version of Apple Xcode prior to 6.0.1 installed. It is, therefore, affected by a denial of service vulnerability in the bundled Subversion component. The 'get_resource' function in 'repos.c' in the 'mod_dav_svn' module allows remote attackers to cause a denial of service when the 'SVNListParentPath' option is enabled.


Upgrade to Apple Xcode version 6.0.1 or later, which is available for OS X 10.9.4 (Mavericks) or later.

See Also

Plugin Details

Severity: Medium

ID: 77863

File Name: macosx_xcode_6_0_1.nasl

Version: $Revision: 1.3 $

Type: local

Agent: macosx

Published: 2014/09/25

Modified: 2016/05/16

Dependencies: 61412

Risk Information

Risk Factor: Medium


Base Score: 4.3

Temporal Score: 3.6

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/a:apple:xcode

Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version, installed_sw/Apple Xcode

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2014/09/17

Vulnerability Publication Date: 2014/09/17

Reference Information

CVE: CVE-2014-0032

BID: 65434

OSVDB: 102927

APPLE-SA: APPLE-SA-2014-09-17-7