Mac OS X Security Update 2005-004

2005-04-20T00:00:00
ID MACOSX_SECUPD2005-004.NASL
Type nessus
Reporter Tenable
Modified 2017-05-30T00:00:00

Description

The remote host is missing Security Update 2005-004. This security update contains security fixes for the following application :

  • iSync (local privilege escalation)

                                        
                                            #TRUSTED 1bda947e832dd7ff25ef64ff8f9274eb41c16f28249ad365dcd514a84c76ecde5e9e7d0774a370d6c15b67eb94ad629c3c1ee19a639372f2cc0830c7af47e3e6f5cbe73154a15407aedfcef1eaa7f768138f84db059857b4f37953777faca31bcee32e94bcce513825f4dcd58127bc3bdf3da500883c2ca9ce2ca4b052b1fbcb8d74c1e2b3dfff6f76706424bc30882b22c3c3c8f11d5177eac332aba9d0211f4fd7a0e64fc6da21e42264e934337731811b0d942912fddcf66e32ead9444a4f448922eccbd67f566a768908299b8b72d5629a1a739e49d225c02136de5239df08952c8dd80b09653b6318c7e67353e2df863346a2b334587b1b26593cbe3ac9625b310a904558732d74347e608ec6dc9e57023b3cb89ae47f25b37c9eae00c1f2cb0685049d2194b5be1dcf0476b7aa2b2ce3ce16f945ab14653dd48d365fc3d8a6e03e4f753aba5ff736fcdf26cd959338003eeb2f81d0886c79e3f824ad60e784f00a43a98628fb2bafbda6bacc64b6c6efd55e1210ac2ba927f51bcc95853d15a44625f23c71aafc2a8e2a3b25ca9c2c5514697f76638835695f6d3b49fc46b55933885155c6da6b149f5ccb8336d09b2581d7cbf4d20e49f1e70944ffa4ae5e4ba26f840e8324c5f758adcb5131685dbb5a2815f69f88354d22a6f4fdd0e4ac20c48311683af5469cd336b6488d66885815d223be934abc828ac60a9ff2
#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
 script_id(18099);
 script_version("1.17");
 script_set_attribute(attribute:"plugin_modification_date", value: "2017/05/30");

 script_cve_id("CVE-2005-0193");
 script_bugtraq_id(12334);
 script_osvdb_id(13158);

 script_name(english:"Mac OS X Security Update 2005-004");
 script_summary(english:"Check for Security Update 2005-004");

 script_set_attribute(attribute:"synopsis", value:
"The remote operating system is missing a security update.");
 script_set_attribute(attribute:"description", value:
"The remote host is missing Security Update 2005-004.  This security
update contains security fixes for the following application :

- iSync (local privilege escalation)");
 script_set_attribute(attribute:"solution", value:"http://docs.info.apple.com/article.html?artnum=301326");
 script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
 script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"true");

 script_set_attribute(attribute:"vuln_publication_date", value:"2005/01/22");
 script_set_attribute(attribute:"patch_publication_date", value:"2005/04/12");
 script_set_attribute(attribute:"plugin_publication_date", value:"2005/04/20");

 script_set_attribute(attribute:"plugin_type", value:"local");
 script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
 script_end_attributes();

 script_category(ACT_GATHER_INFO);

 script_copyright(english:"This script is Copyright (C) 2005-2017 Tenable Network Security, Inc.");
 script_family(english:"MacOS X Local Security Checks");

 script_dependencies("ssh_get_info.nasl");
 script_require_keys("Host/MacOSX/packages");
 exit(0);
}


include("misc_func.inc");
include("ssh_func.inc");
include("macosx_func.inc");


if(sshlib::get_support_level() >= sshlib::SSH_LIB_SUPPORTS_COMMANDS)
  enable_ssh_wrappers();
else disable_ssh_wrappers();

function exec(cmd)
{
 local_var buf, ret, soc;

 if ( islocalhost() )
  buf = pread(cmd:"/bin/bash", argv:make_list("bash", "-c", cmd));
 else
 {
  ret = ssh_open_connection();
  if ( ! ret ) exit(0);
  buf = ssh_cmd(cmd:cmd);
  ssh_close_connection();
 }

 if ( buf !~ "^[0-9]" ) exit(0);

 buf = chomp(buf);
 return buf;
}

packages = get_kb_item("Host/MacOSX/packages");
if ( ! packages ) exit(0);


uname = get_kb_item("Host/uname");
# MacOS X 10.2.8, 10.3.9 only
if ( egrep(pattern:"Darwin.* (6\.8\.|7\.[789]\.)", string:uname) )
{
 cmd = _GetBundleVersionCmd(file:"SymbianConduit.bundle", path:"/System/Library/SyncServices", label:"SourceVersion");
 buf = exec(cmd:cmd);
 if ( int(buf) > 0 && int(buf) < 840200 ) security_hole(0);
}