Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2005-2018 Tenable Network Security, Inc.MACOSX_SECUPD2005-001.NASL
HistoryJan 26, 2005 - 12:00 a.m.

Mac OS X Multiple Vulnerabilities (Security Update 2005-001)

2005-01-2600:00:00
This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
www.tenable.com
25
JSON

he remote host is missing Security Update 2005-001. This security update contains a number of fixes for the following programs :

  • at commands
  • ColorSync
  • libxml2
  • Mail
  • PHP
  • Safari
  • SquirrelMail

These programs have multiple vulnerabilities which may allow a remote attacker to execute arbitrary code.

#
# (C) Tenable Network Security, Inc.
#

if ( ! defined_func("bn_random") ) exit(0);
if ( NASL_LEVEL < 3000) exit(0);

include("compat.inc");

if(description)
{
 script_id(16251);
 script_version ("1.21");
 script_cve_id("CVE-2005-0125", "CVE-2005-0126", "CVE-2004-0989", "CVE-2005-0127", "CVE-2003-0860", 
               "CVE-2003-0863", "CVE-2004-0594", "CVE-2004-0595", "CVE-2004-1018", "CVE-2004-1019", 
               "CVE-2004-1020", "CVE-2004-1063", "CVE-2004-1064", "CVE-2004-1065", "CVE-2004-1314", 
               "CVE-2004-1036");
 script_bugtraq_id(12367, 12366, 12297, 11857);

 script_name(english:"Mac OS X Multiple Vulnerabilities (Security Update 2005-001)");
 script_summary(english:"Check for Security Update 2005-001");

 script_set_attribute( attribute:"synopsis", value:
"The remote host is missing a Mac OS X update that fixes a security
issue." );
 script_set_attribute(attribute:"description",   value:
"he remote host is missing Security Update 2005-001. This security
update contains a number of fixes for the following programs :

  - at commands
  - ColorSync
  - libxml2
  - Mail
  - PHP
  - Safari
  - SquirrelMail

These programs have multiple vulnerabilities which may allow a remote
attacker to execute arbitrary code." );
 script_set_attribute(
   attribute:"see_also",
   value:"http://support.apple.com/kb/TA22859"
 );
 script_set_attribute(
   attribute:"solution", 
   value:"Install Security Update 2005-001."
 );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
 script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"true");
 script_set_attribute(attribute:"exploited_by_malware", value:"true");
 script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
 script_set_attribute(attribute:"canvas_package", value:'CANVAS');
 script_cwe_id(20);
 script_set_attribute(attribute:"plugin_publication_date", value: "2005/01/26");
 script_set_attribute(attribute:"vuln_publication_date", value: "2003/07/16");
 script_set_attribute(attribute:"patch_publication_date", value: "2005/01/26");
 script_cvs_date("Date: 2018/07/14  1:59:35");
 script_set_attribute(attribute:"plugin_type", value:"local");
 script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
 script_end_attributes();
 
 script_category(ACT_GATHER_INFO);
 script_family(english:"MacOS X Local Security Checks");

 script_copyright(english:"This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.");

 script_dependencies("ssh_get_info.nasl");
 script_require_keys("Host/MacOSX/packages");
 exit(0);
}


packages = get_kb_item("Host/MacOSX/packages");
if ( ! packages ) exit(0);

uname = get_kb_item("Host/uname");
# MacOS X 10.2.8, 10.3.7 only
if ( egrep(pattern:"Darwin.* (6\.8\.|7\.7\.)", string:uname) )
{
  if ( ! egrep(pattern:"^SecUpd(Srvr)?2005-001", string:packages) ) security_hole(0);
	else non_vuln = 1;
}
else if ( egrep(pattern:"Darwin.* (6\.9|[0-9][0-9]\.|7\.([8-9]\.|[0-9][0-9]\.))", string:uname) ) non_vuln = 1;

if ( non_vuln )
{
 list = make_list("CVE-2005-0125", "CVE-2005-0126", "CVE-2004-0989", "CVE-2005-0127", "CVE-2003-0860", "CVE-2003-0863", "CVE-2004-0594", "CVE-2004-0595", "CVE-2004-1018", "CVE-2004-1019", "CVE-2004-1020", "CVE-2004-1063", "CVE-2004-1064", "CVE-2004-1065", "CVE-2004-1314", "CVE-2004-1036");
 foreach cve (list) set_kb_item(name:cve, value:TRUE);
}
VendorProductVersionCPE
applemac_os_xcpe:/o:apple:mac_os_x

References

Related

nessus 55
gentoo 4
securityvulns 8
redhat 9
ubuntu 4
openvas 39
debian 5
osv 3
slackware 1
suse 5
freebsd 5
cve 19
ubuntucve 9
cert 3
packetstorm 2
canvas 1
debiancve 1
f5 2
amazon 2
prion 1
centos 2
veracode 1
exploitpack 1
fedora 2
exploitdb 1
rosalinux 1
nessus
nessus
Mandrake Linux Security Advisory : php (MDKSA-2004:151)
2004-12-19 00:00:00
PHP < 4.3.10 / 5.0.3 Multiple Vulnerabilities
2004-12-15 00:00:00
GLSA-200412-14 : PHP: Multiple vulnerabilities
2004-12-19 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2004-12-19 00:00:00
PHP: Multiple security vulnerabilities
2004-07-15 00:00:00
SquirrelMail: Encoded text XSS vulnerability
2004-11-17 00:00:00
securityvulns
securityvulns
Advisory 01/2004: Multiple vulnerabilities in PHP 4/5
2004-12-16 00:00:00
Mambo Multiple Vulnerabilities
2006-02-25 00:00:00
[Full-Disclosure] Advisory 12/2004: PHP strip_tags&#40;&#41; bypass vulnerability
2004-07-14 00:00:00
redhat
redhat
(RHSA-2005:032) php security update
2005-02-15 00:00:00
(RHSA-2004:395) php security update
2004-07-19 00:00:00
(RHSA-2005:031) php security update
2005-01-19 00:00:00
ubuntu
ubuntu
PHP4 vulnerabilities
2005-03-18 00:00:00
PHP vulnerabilities
2004-12-17 00:00:00
Fixed php4 packages for USN-99-1
2005-03-24 00:00:00
openvas
openvas
php -- multiple vulnerabilities
2008-09-04 00:00:00
Debian Security Advisory DSA 669-1 (php3)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200412-14 (PHP)
2008-09-24 00:00:00
debian
debian
[SECURITY] [DSA 531-1] New php4 packages fix multiple vulnerabilities
2004-07-21 02:41:59
[SECURITY] [DSA 669-1] New php3 packages fix several vulnerabilities
2005-02-07 12:12:08
[SECURITY] [DSA 669-1] New php3 packages fix several vulnerabilities
2005-02-07 12:12:08
osv
osv
php4 - several vulnerabilities
2004-07-20 00:00:00
php3 - several
2005-02-07 00:00:00
libxml - buffer overflow
2004-11-02 00:00:00
slackware
slackware
PHP
2004-07-20 23:21:16
suse
suse
remote code execution in php4, mod_php4
2005-01-17 17:12:32
remote code execution in php4/mod_php4
2004-07-16 12:43:18
Security update for php5 (important)
2015-02-24 11:05:36
freebsd
freebsd
php -- multiple vulnerabilities
2004-12-16 00:00:00
php -- strip_tags cross-site scripting vulnerability
2004-07-07 00:00:00
php -- memory_limit related vulnerability
2004-07-07 00:00:00
cve
cve
CVE-2003-0863
2003-11-17 05:00:00
CVE-2003-0860
2003-11-17 05:00:00
CVE-2004-1063
2005-01-10 05:00:00
ubuntucve
ubuntucve
CVE-2004-1063
2005-01-10 00:00:00
CVE-2004-1036
2005-03-01 00:00:00
CVE-2004-1064
2005-01-10 00:00:00
cert
cert
Apple Mac OS X "at" utilities fail to drop privileges properly
2005-01-27 00:00:00
Apple Mac OS X vulnerable to buffer overflow in ColorSync ICC color profile handling
2005-01-27 00:00:00
Apple Mac OS X vulnerable to information disclosure in "Message-ID" header
2005-01-31 00:00:00
packetstorm
packetstorm
mambo453.txt
2006-02-26 00:00:00
DMA-2005-0127a.txt
2005-01-28 00:00:00
canvas
canvas
Immunity Canvas: PHP_LIMIT
2004-07-27 04:00:00
debiancve
debiancve
CVE-2004-0989
2005-03-01 05:00:00
f5
f5
SOL16021 - PHP vulnerability CVE-2014-8142
2015-01-22 00:00:00
K16021 : PHP vulnerability CVE-2014-8142
2015-01-22 00:00:00
amazon
amazon
Medium: php55
2015-01-08 11:35:00
Medium: php54
2015-01-08 11:35:00
prion
prion
Design/Logic Flaw
2014-12-20 11:59:00
centos
centos
libxml security update
2005-05-27 13:28:28
php security update
2005-11-10 23:45:48
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:06:10
exploitpack
exploitpack
Mambo 4.5.3h - Multiple Vulnerabilities
2016-02-24 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: libxml-1.8.17-24.fc10
2009-08-15 08:20:49
[SECURITY] Fedora 11 Update: libxml-1.8.17-24.fc11
2009-08-15 08:18:18
exploitdb
exploitdb
Mambo &lt; 4.5.3h - Multiple Vulnerabilities
2016-02-24 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45
JSON
Related for MACOSX_SECUPD2005-001.NASL
nessus55gentoo4securityvulns8redhat9ubuntu4openvas39debian5osv3slackware1suse5freebsd5cve19ubuntucve9cert3packetstorm2canvas1debiancve1f52amazon2prion1centos2veracode1exploitpack1fedora2exploitdb1rosalinux1