Summary
This host is running Apple Mac OS X and
is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attackers
decrypt data protected by SSL, denial of service attack, arbitrary code execution, bypass security restrictions.
Impact Level: System/Application
Solution
Run Mac Updates. For more information
refer link, http://support.apple.com/kb/HT6150
NOTE: Please ignore the warning if the update is already applied.
Insight
Multiple flaws exist due to,
- An error in the LaunchServices interface within the App Sandbox component.
- An error when handling session cookies within the CFNetwork.
- A memory corruption error in handling of Microsoft Office files.
- A design error exists within the implementation of SSL.
Affected
Apple Mac OS X 10.8.x through 10.8.5
Detection
Get the installed version with the help
of detect NVT and check the version is vulnerable or not.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-3389, CVE-2013-5179, CVE-2014-1257, CVE-2014-1260 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe AIR Multiple Vulnerabilities-01 Sep14 (Windows)
- Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Windows
- Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)
- Adobe Acrobat Multiple Vulnerabilities - 01 May14 (Mac OS X)
- Adobe Air and Flash Player Multiple Vulnerabilities August-2011 (Windows)