Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2022 Tenable Network Security, Inc.MACOSX_10_7_5.NASL
HistorySep 20, 2012 - 12:00 a.m.

Mac OS X 10.7.x < 10.7.5 Multiple Vulnerabilities (BEAST)

2012-09-2000:00:00
This script is Copyright (C) 2012-2022 Tenable Network Security, Inc.
www.tenable.com
37
JSON

The remote host is running a version of Mac OS X 10.7.x that is prior to 10.7.5. The newer version contains multiple security-related fixes for the following components :

  • Apache
  • BIND
  • CoreText
  • Data Security
  • ImageIO
  • Installer
  • International Components for Unicode
  • Kernel
  • Mail
  • PHP
  • Profile Manager
  • QuickLook
  • QuickTime
  • Ruby
  • USB
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(62214);
  script_version("1.25");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/12/05");

  script_cve_id(
    "CVE-2011-3026",
    "CVE-2011-3048",
    "CVE-2011-3368",
    "CVE-2011-3389",
    "CVE-2011-3607",
    "CVE-2011-4313",
    "CVE-2011-4317",
    "CVE-2011-4599",
    "CVE-2012-0021",
    "CVE-2012-0031",
    "CVE-2012-0053",
    "CVE-2012-0643",
    "CVE-2012-0652",
    "CVE-2012-0668",
    "CVE-2012-0670",
    "CVE-2012-0671",
    "CVE-2012-0831",
    "CVE-2012-1172",
    "CVE-2012-1173",
    "CVE-2012-1667",
    "CVE-2012-1823",
    "CVE-2012-2143",
    "CVE-2012-2311",
    "CVE-2012-2386",
    "CVE-2012-2688",
    "CVE-2012-3716",
    "CVE-2012-3719",
    "CVE-2012-3721",
    "CVE-2012-3722",
    "CVE-2012-3723"
  );
  script_bugtraq_id(
    47545,
    49778,
    49957,
    50494,
    50690,
    50802,
    51006,
    51407,
    51705,
    51706,
    51954,
    52049,
    52364,
    52830,
    52891,
    53388,
    53403,
    53445,
    53457,
    53579,
    53582,
    53584,
    53729,
    53772,
    54638,
    56241,
    56244,
    56246,
    56247
  );
  script_xref(name:"CERT", value:"864643");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/04/15");
  script_xref(name:"CEA-ID", value:"CEA-2019-0547");

  script_name(english:"Mac OS X 10.7.x < 10.7.5 Multiple Vulnerabilities (BEAST)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a Mac OS X update that fixes multiple
security vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The remote host is running a version of Mac OS X 10.7.x that is prior
to 10.7.5. The newer version contains multiple security-related fixes
for the following components :

  - Apache
  - BIND
  - CoreText
  - Data Security
  - ImageIO
  - Installer
  - International Components for Unicode
  - Kernel
  - Mail
  - PHP
  - Profile Manager
  - QuickLook
  - QuickTime
  - Ruby
  - USB");
  script_set_attribute(attribute:"see_also", value:"http://seclists.org/bugtraq/2012/Sep/94");
  script_set_attribute(attribute:"see_also", value:"http://support.apple.com/kb/HT5501");
  script_set_attribute(attribute:"see_also", value:"http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html");
  script_set_attribute(attribute:"see_also", value:"https://www.imperialviolet.org/2011/09/23/chromeandbeast.html");
  script_set_attribute(attribute:"see_also", value:"https://www.openssl.org/~bodo/tls-cbc.txt");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Mac OS X 10.7.5 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2012-2688");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'PHP CGI Argument Injection');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");
  script_set_attribute(attribute:"in_the_news", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2011/07/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/09/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/09/20");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2012-2022 Tenable Network Security, Inc.");

  script_dependencies("ssh_get_info.nasl", "os_fingerprint.nasl");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

os = get_kb_item("Host/MacOSX/Version");
if (!os)
{
  os = get_kb_item_or_exit("Host/OS");
  if ("Mac OS X" >!< os) audit(AUDIT_OS_NOT, "Mac OS X");

  c = get_kb_item("Host/OS/Confidence");
  if (c <= 70) exit(1, "Can't determine the host's OS with sufficient confidence.");
}
if (!os) audit(AUDIT_OS_NOT, "Mac OS X");

if (ereg(pattern:"Mac OS X 10\.7($|\.[0-4]([^0-9]|$))", string:os)) security_hole(0);
else exit(0, "The host is not affected as it is running "+os+".");
VendorProductVersionCPE
applemac_os_xcpe:/o:apple:mac_os_x

References

Related

nessus 49
openvas 83
securityvulns 5
altlinux 3
freebsd 2
slackware 1
fedora 22
f5 2
ubuntu 2
osv 2
centos 1
debian 3
redhat 4
amazon 2
suse 4
oraclelinux 1
thn 1
veracode 1
cve 2
ubuntucve 3
prion 2
debiancve 1
kaspersky 1
gentoo 1
cert 1
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2012-004) (BEAST)
2012-09-20 00:00:00
FreeBSD : apache -- multiple vulnerabilities (4b7dbfab-4c6b-11e1-bc16-0023ae8e59f0)
2012-02-02 00:00:00
Fedora 15 : httpd-2.2.22-1.fc15 (2012-1642)
2012-03-07 00:00:00
openvas
openvas
Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004)
2012-09-25 00:00:00
Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004)
2012-09-25 00:00:00
Fedora Update for httpd FEDORA-2012-1598
2012-04-02 00:00:00
securityvulns
securityvulns
APPLE-SA-2012-09-19-2 OS X Mountain Lion v10.8.2, OS X Lion v10.7.5 and Security Update 2012-004
2012-09-24 00:00:00
Apple Mac OS X multiple security vulnerabilities
2012-10-01 00:00:00
[Announce] Apache HTTP Server 2.2.22 Released
2012-02-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
freebsd
freebsd
apache -- multiple vulnerabilities
2011-10-05 00:00:00
php -- multiple vulnerabilities
2012-03-01 00:00:00
slackware
slackware
[slackware-security] httpd
2012-02-10 17:43:57
fedora
fedora
[SECURITY] Fedora 15 Update: httpd-2.2.22-1.fc15
2012-03-06 19:30:50
[SECURITY] Fedora 16 Update: php-5.3.15-1.fc16
2012-08-05 21:22:14
[SECURITY] Fedora 16 Update: httpd-2.2.22-1.fc16
2012-02-21 01:28:42
f5
f5
K15889 : Apache HTTP server vulnerabilities CVE-2011-3368, CVE-2011-4317, CVE-2012-0021, CVE-2012-0031, and CVE-2012-0053
2015-08-03 00:00:00
SOL15889 - Apache HTTP server vulnerabilities CVE-2011-3368, CVE-2011-4317, CVE-2012-0021, CVE-2012-0031, and CVE-2012-0053
2014-12-03 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2012-02-16 00:00:00
PHP vulnerability
2012-05-04 00:00:00
osv
osv
apache2 - multiple issues
2012-02-06 00:00:00
php5 - several
2012-05-09 00:00:00
centos
centos
httpd, mod_ssl security update
2012-02-14 11:13:29
debian
debian
[SECURITY] [DSA 2405-1] apache2 security update
2012-02-06 09:06:39
[SECURITY] [DSA 2405-1] apache2 security update
2012-02-06 09:06:39
[SECURITY] [DSA 2465-1] php5 security update
2012-05-09 17:23:53
redhat
redhat
(RHSA-2012:0128) Moderate: httpd security update
2012-02-13 00:00:00
(RHSA-2012:0542) Moderate: httpd security and bug fix update
2012-05-07 00:00:00
(RHSA-2012:0323) Moderate: httpd security update
2012-02-21 00:00:00
amazon
amazon
Medium: httpd
2012-02-16 10:48:00
Medium: php
2012-07-05 16:09:00
suse
suse
Security update for PHP5 (critical)
2012-05-09 02:08:18
Security update for PHP5 (critical)
2012-05-09 06:08:17
Security update for PHP5 (critical)
2012-05-09 22:08:16
oraclelinux
oraclelinux
httpd security update
2012-02-13 00:00:00
thn
thn
New Apache Reverse Proxy Flaw Allows Access to Internal Network
2011-11-27 08:58:00
veracode
veracode
Unauthorized Reverse Proxy Connection
2020-04-10 01:10:16
cve
cve
CVE-2011-4317
2011-11-30 04:05:00
CVE-2012-2311
2012-05-11 10:15:00
ubuntucve
ubuntucve
CVE-2011-4317
2011-11-29 00:00:00
CVE-2012-1823
2012-05-03 00:00:00
CVE-2012-2311
2012-05-04 00:00:00
prion
prion
Design/Logic Flaw
2011-11-30 04:05:00
Design/Logic Flaw
2012-05-11 10:15:00
debiancve
debiancve
CVE-2011-4317
2011-11-30 04:05:00
kaspersky
kaspersky
KLA10065 Multiple vulnerabilities in Apache httpd
2013-07-22 00:00:00
gentoo
gentoo
Apache HTTP Server: Multiple vulnerabilities
2012-06-24 00:00:00
cert
cert
PHP-CGI query string parameter vulnerability
2012-05-03 00:00:00
JSON
Related for MACOSX_10_7_5.NASL
nessus49openvas83securityvulns5altlinux3freebsd2slackware1fedora22f52ubuntu2osv2centos1debian3redhat4amazon2suse4oraclelinux1thn1veracode1cve2ubuntucve3prion2debiancve1kaspersky1gentoo1cert1