Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Apple Mac OS X Multiple Vulnerabilities-03 November-2016

Information

Severity

Severity

Critical

Family

Family

Mac OS X Local Security Checks

CVSSv2 Base

CVSSv2 Base

10.0

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

7 years ago

Modified

Modified

5 years ago

Share

Summary

This host is running Apple Mac OS X and is prone to multiple vulnerabilities.

Insight

Insight

Multiple flaws are due to, - The windowServer does not prevent session creation by a sandboxed application. - A buffer underflow error in CoreGraphics. - The CFNetwork does not ensure that a Set-Cookie HTTP header is complete before interpreting the header's value. - The Intel Graphics Driver does not properly validate a certain pointer. - A heap-based buffer overflow error in Ruby. - The Secure Transport does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation.

Affected Software

Affected Software

Apple Mac OS X versions 10.8.x through 10.8.5

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

Updates are available. Please see the references or vendor advisory for more information. .

Common Vulnerabilities and Exposures (CVE)

References