Mac OS X Multiple Vulnerabilities (Security Update 2005-005)

High Nessus Network Monitor Plugin ID 2878

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is missing Security Update 2005-005. This security
update contains security fixes for the following application :

- Apache
- AppKit
- AppleScript
- Bluetooth
- Directory Services
- Finder
- Foundation
- HelpViewer
- LDAP
- libXpm
- lukemftpd
- NetInfo
- ServerAdmin
- sudo
- Terminal
- VPN

Solution

Apply Security Update 2005-005.

See Also

http://docs.info.apple.com/article.html?artnum=301528

http://www.securityfocus.com/archive/1/397306

Plugin Details

Severity: High

ID: 2878

Family: Web Clients

Published: 2005/05/04

Modified: 2016/02/05

Dependencies: 1769

Nessus ID: 18352, 18189

Risk Information

Risk Factor: High

CVSSv2

Base Score: 8.3

Temporal Score: 6.1

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 8.7

Temporal Score: 7.5

Vector: CVSS3#AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:apple:mac_os_x

Exploitable With

CANVAS (D2ExploitPack)

Reference Information

CVE: CVE-2004-0888, CVE-2004-0889, CVE-2005-0206, CVE-2005-1430, CVE-2004-0914, CVE-2004-0692, CVE-2005-1344, CVE-2004-1308, CVE-2005-1330, CVE-2005-1331, CVE-2005-1332, CVE-2005-1333, CVE-2005-1335, CVE-2005-0342, CVE-2005-1336, CVE-2005-1337, CVE-2005-1338, CVE-2004-0687, CVE-2004-0688, CVE-2005-1339, CVE-2005-1340, CVE-2004-1051, CVE-2005-1341, CVE-2005-1342, CVE-2005-1343

BID: 11196, 11501, 11668, 11694, 12458, 13537, 13467, 13480, 13486, 13488, 13491, 13496, 13494, 13500, 13502, 13503