Apple Xcode < 8.0 otool RCE (Mac OS X)
High Nessus Plugin ID 93526
SynopsisAn IDE application installed on the remote Mac OS X host is affected by multiple remote code execution vulnerabilities.
DescriptionThe version of Apple Xcode installed on the remote Mac OS X host is prior to 8.0. It is, therefore, affected by multiple memory corruption issues in the otool command line utility due to improper validation of input. A local attacker can exploit these to cause a denial of service condition or the execution of arbitrary code.
SolutionUpgrade to Apple Xcode version 8.0 or later.