Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Apple Mac OS X Multiple Vulnerabilities-02 April-2017

Information

Severity

Severity

Critical

Family

Family

Mac OS X Local Security Checks

CVSSv2 Base

CVSSv2 Base

9.3

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

5 years ago

Modified

Modified

3 years ago

Summary

This host is running Apple Mac OS X and is prone to multiple vulnerabilities.

Insight

Insight

Multiple flaws exists due to, - An input validation error exists in Help Viewer's handling of help: URLs. - A buffer overflow exists in the handling of images. - A double free issue exists in the renewal or validation of existing tickets in the KDC process. - A logic issue in the handling of KDC requests may cause an assertion to be triggered. - A logic issue exists in the handling of vfork where the Mach exception handler is not reset in a certain case. - A format string issue exists in the handling of afp:, cifs:, and smb: URLs. - A man-in-the-middle attack in Open Directory. - A character encoding issue exists in Printer Setup's handling of nearby printers. - An integer overflow issue exists in the calculation of page sizes in the cgtexttops CUPS filter.

Affected Software

Affected Software

Apple Mac OS X and Mac OS X Server version 10.6 through 10.6.3

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

Upgrade to Apple Mac OS X version 10.6.4 or later.