Mac OS X 10.6.x < 10.6.3 多种漏洞

critical Nessus 插件 ID 45372

语言:

简介

远程主机缺少用于修复各种安全问题的 Mac OS X 更新。

描述

远程主机运行的 Mac OS X 10.6.x 版本低于 10.6.3。Mac OS X 10.6.3 含有下列产品的安全修复:- AFP Server - Apache - CoreAudio - CoreMedia - CoreTypes - CUPS - DesktopServices - Disk Images - Directory Services - Dovecot - Event Monitor - FreeRADIUS - FTP Server - iChat Server - ImageIO - Image RAW - Libsystem - Mail - MySQL - OS Services - Password Server - PHP - Podcast Producer - Preferences - PS Normalizer - QuickTime - Ruby - Server Admin - SMB - Tomcat - Wiki Server - X11

解决方案

升级到 Mac OS X 10.6.3 或更高版本。

另见

http://support.apple.com/kb/HT4077

http://lists.apple.com/archives/security-announce/2010/Mar/msg00001.html

http://www.securityfocus.com/advisories/19364

插件详情

严重性: Critical

ID: 45372

文件名: macosx_10_6_3.nasl

版本: 1.31

类型: combined

代理: macosx

发布时间: 2010/3/29

最近更新时间: 2018/7/16

支持的传感器: Nessus Agent

风险信息

VPR

风险因素: High

分数: 8.9

CVSS v2

风险因素: Critical

基本分数: 10

时间分数: 8.7

矢量: AV:N/AC:L/Au:N/C:C/I:C/A:C

时间矢量: E:H/RL:OF/RC:C

漏洞信息

CPE: cpe:/o:apple:mac_os_x

可利用: true

易利用性: Exploits are available

补丁发布日期: 2010/3/29

漏洞发布日期: 2010/3/29

可利用的方式

CANVAS (D2ExploitPack)

Core Impact

参考资料信息

CVE: CVE-2003-0063, CVE-2006-1329, CVE-2008-4456, CVE-2008-5515, CVE-2008-7247, CVE-2009-0033, CVE-2009-0580, CVE-2009-0689, CVE-2009-0781, CVE-2009-0783, CVE-2009-1904, CVE-2009-2042, CVE-2009-2417, CVE-2009-2422, CVE-2009-2446, CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2009-2906, CVE-2009-3009, CVE-2009-3095, CVE-2009-3557, CVE-2009-3558, CVE-2009-3559, CVE-2009-4017, CVE-2009-4019, CVE-2009-4030, CVE-2009-4214, CVE-2010-0041, CVE-2010-0042, CVE-2010-0043, CVE-2010-0057, CVE-2010-0059, CVE-2010-0060, CVE-2010-0062, CVE-2010-0063, CVE-2010-0064, CVE-2010-0065, CVE-2010-0393, CVE-2010-0497, CVE-2010-0498, CVE-2010-0500, CVE-2010-0501, CVE-2010-0502, CVE-2010-0504, CVE-2010-0505, CVE-2010-0507, CVE-2010-0508, CVE-2010-0509, CVE-2010-0510, CVE-2010-0511, CVE-2010-0512, CVE-2010-0513, CVE-2010-0514, CVE-2010-0515, CVE-2010-0516, CVE-2010-0517, CVE-2010-0518, CVE-2010-0519, CVE-2010-0520, CVE-2010-0521, CVE-2010-0524, CVE-2010-0525, CVE-2010-0526, CVE-2010-0533, CVE-2010-0534, CVE-2010-0535, CVE-2010-0537

BID: 6940, 17155, 31486, 35193, 35196, 35233, 35263, 35278, 35416, 35510, 35579, 35609, 36032, 36278, 36554, 36555, 36573, 37075, 37142, 37297, 37942, 37944, 37945, 38043, 38524, 38673, 38676, 38677, 39151, 39153, 39157, 39160, 39161, 39171, 39172, 39175, 39194, 39230, 39231, 39232, 39234, 39236, 39252, 39255, 39256, 39258, 39264, 39268, 39273, 39274, 39278, 39279, 39281, 39291

CWE: 20, 22, 59, 79, 119, 134, 189, 200, 264, 287, 310