Mac OS X 10.11.x < 10.11.4 Multiple Vulnerabilities

Critical Nessus Plugin ID 90096

Synopsis

The remote Mac OS X host is affected by multiple vulnerabilities.

Description

The remote host is running a version of Mac OS X that is 10.11.x prior to 10.11.4. It is, therefore, affected by multiple vulnerabilities in the following components :

- apache_mod_php
- AppleRAID
- AppleUSBNetworking
- Bluetooth
- Carbon
- dyld
- FontParser
- HTTPProtocol
- Intel Graphics Driver
- IOFireWireFamily
- IOGraphics
- IOHIDFamily
- IOUSBFamily
- Kernel
- libxml2
- Messages
- NVIDIA Graphics Drivers
- OpenSSH
- OpenSSL
- Python
- QuickTime
- Reminders
- Ruby
- Security
- Tcl
- TrueTypeScaler
- Wi-Fi

Note that successful exploitation of the most serious issues can result in arbitrary code execution.

Solution

Upgrade to Mac OS X version 10.11.4 or later.

CVE: CVE-2014-9495, CVE-2015-0973, CVE-2015-1819, CVE-2015-3195, CVE-2015-5312, CVE-2015-7499, CVE-2015-7500, CVE-2015-7551, CVE-2015-7942, CVE-2015-8035, CVE-2015-8126, CVE-2015-8242, CVE-2015-8472, CVE-2015-8659, CVE-2016-0777, CVE-2016-0778, CVE-2016-0801, CVE-2016-0802, CVE-2016-1732, CVE-2016-1733, CVE-2016-1734, CVE-2016-1735, CVE-2016-1736, CVE-2016-1737, CVE-2016-1738, CVE-2016-1740, CVE-2016-1741, CVE-2016-1743, CVE-2016-1744, CVE-2016-1745, CVE-2016-1746, CVE-2016-1747, CVE-2016-1748, CVE-2016-1749, CVE-2016-1750, CVE-2016-1752, CVE-2016-1753, CVE-2016-1754, CVE-2016-1755, CVE-2016-1756, CVE-2016-1757, CVE-2016-1758, CVE-2016-1759, CVE-2016-1761, CVE-2016-1762, CVE-2016-1764, CVE-2016-1767, CVE-2016-1768, CVE-2016-1769, CVE-2016-1770, CVE-2016-1773, CVE-2016-1775, CVE-2016-1788, CVE-2016-1950

BID: 71820, 71994, 75570, 77390, 77568, 77681, 78624, 78626, 79507, 79509, 79536, 79562, 80438, 80695, 80698

APPLE-SA: APPLE-SA-2016-03-21-5

Mac OS X 10.11.x < 10.11.4 Multiple Vulnerabilities

Synopsis

Description

Solution

See Also

Plugin Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerability Information

Exploitable With

Reference Information