Mac OS X 10.10.x < 10.10.3 Multiple Vulnerabilities (FREAK)
Critical Nessus Plugin ID 82699
SynopsisThe remote host is missing a Mac OS X update that fixes multiple security vulnerabilities.
DescriptionThe remote host is running a version of Mac OS X 10.10.x that is prior to 10.10.3. It is, therefore, affected multiple vulnerabilities in the following components :
- Admin Framework
- Certificate Trust Policy
- CFNetwork HTTPProtocol
- CFNetwork Session
- Graphics Driver
- Open Directory Client
- Security - Code SIgning
Note that successful exploitation of the most serious issues can result in arbitrary code execution.
SolutionUpgrade to Mac OS X 10.10.3 or later.