Mac OS X Libxslt Function Type Confusion RCE (Security Update 2016-001)

High Nessus Plugin ID 88048


The remote host is missing a Mac OS X update that fixes a remote code execution vulnerability.


The remote host is running a version of Mac OS X 10.9.5 or 10.10.5 that is missing Security Update 2016-001. It is, therefore, affected by a remote code execution vulnerability due to a type confusion flaw in the bundled libxslt component that is triggered when handling invalid values. A remote attacker can exploit this, via a specially crafted website, to cause a denial of service condition or the execution of arbitrary code.


Install Security Update 2016-001 or later.

See Also

Plugin Details

Severity: High

ID: 88048

File Name: macosx_SecUpd2016-001.nasl

Version: $Revision: 1.11 $

Type: local

Agent: macosx

Published: 2016/01/21

Modified: 2016/11/28

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND


Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x

Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version, Host/MacOSX/packages/boms

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2016/01/19

Vulnerability Publication Date: 2016/01/19

Reference Information

CVE: CVE-2015-7995

BID: 77325

OSVDB: 126901

APPLE-SA: APPLE-SA-2016-01-19-2