Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2008-2018 Tenable Network Security, Inc.MACOSX_SECUPD2008-001.NASL
HistoryFeb 12, 2008 - 12:00 a.m.

Mac OS X Multiple Vulnerabilities (Security Update 2008-001)

2008-02-1200:00:00
This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.
www.tenable.com
18
JSON

The remote host is running a version of Mac OS X 10.4 that does not have the security update 2008-001 applied.

This update contains several security fixes for a number of programs.

#
# (C) Tenable Network Security, Inc.
#


if (!defined_func("bn_random")) exit(0);



include("compat.inc");

if (description)
{
  script_id(30254);
  script_version ("1.25");

  if (NASL_LEVEL >= 3000)
  {
    script_cve_id("CVE-2007-0355", "CVE-2007-4568", "CVE-2007-6015", "CVE-2008-0035", "CVE-2008-0037",
                  "CVE-2008-0038", "CVE-2008-0039", "CVE-2008-0040", "CVE-2008-0041", "CVE-2008-0042");
    script_bugtraq_id(22101, 25898, 26791, 27296, 27736);
  }
 script_xref(name:"EDB-ID", value:"3151");

  script_name(english:"Mac OS X Multiple Vulnerabilities (Security Update 2008-001)");
  script_summary(english:"Check for the presence of Security Update 2008-001");

 script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a Mac OS X update that fixes various
security issues." );
 script_set_attribute(attribute:"description", value:
"The remote host is running a version of Mac OS X 10.4 that does not
have the security update 2008-001 applied. 

This update contains several security fixes for a number of programs." );
 script_set_attribute(attribute:"see_also", value:"http://docs.info.apple.com/article.html?artnum=307430" );
 script_set_attribute(attribute:"see_also", value:"http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html" );
 script_set_attribute(attribute:"see_also", value:"http://www.securityfocus.com/advisories/13987" );
 script_set_attribute(attribute:"solution", value:
"Install Security Update 2008-001 or later." );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
 script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"true");
 script_cwe_id(94, 119, 189, 200, 264, 399);

 script_set_attribute(attribute:"plugin_publication_date", value: "2008/02/12");
 script_set_attribute(attribute:"patch_publication_date", value: "2008/02/11");
 script_set_attribute(attribute:"vuln_publication_date", value: "2007/01/17");
 script_cvs_date("Date: 2018/09/17 21:46:53");

script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");
  script_copyright(english:"This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.");
  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/MacOSX/packages", "Host/uname");
  exit(0);
}


uname = get_kb_item("Host/uname");
if (!uname) exit(0);

if (egrep(pattern:"Darwin.* (8\.[0-9]\.|8\.1[01]\.)", string:uname))
{
  packages = get_kb_item("Host/MacOSX/packages");
  if (!packages) exit(0);

  if (!egrep(pattern:"^SecUpd(Srvr)?(2008-00[1-8]|2009-|20[1-9][0-9]-)", string:packages))
    security_hole(0);
}
VendorProductVersionCPE
applemac_os_xcpe:/o:apple:mac_os_x

Related

nessus 35
openvas 81
securityvulns 7
seebug 3
checkpoint_advisories 2
redhat 4
prion 11
ubuntucve 2
osv 2
debian 2
suse 2
cve 11
samba 1
cvelist 10
slackware 1
debiancve 1
altlinux 1
fedora 5
gentoo 2
cert 2
veracode 1
freebsd 2
ubuntu 1
oraclelinux 3
centos 5
vmware 2
nessus
nessus
Mac OS X 10.5.x < 10.5.2 Multiple Vulnerabilities
2008-02-12 00:00:00
Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / current : samba (SSA:2007-344-01)
2007-12-11 00:00:00
FreeBSD : samba -- buffer overflow vulnerability (ffcbd42d-a8c5-11dc-bec2-02e0185f8d72)
2007-12-13 00:00:00
openvas
openvas
Mac OS X 10.5.2 Update / Mac OS X Security Update 2008-001
2010-05-12 00:00:00
Mac OS X 10.5.2 Update / Mac OS X Security Update 2008-001
2010-05-12 00:00:00
Ubuntu Update for samba vulnerability USN-556-1
2009-03-23 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2008-02-13 00:00:00
Samba buffer overflow
2007-12-16 00:00:00
Secunia Research: Samba &quot;send_mailslot&#40;&#41;&quot; Buffer Overflow Vulnerability
2007-12-12 00:00:00
seebug
seebug
Apple Mac OS X 2008-001更新修复多个安全漏洞
2008-02-21 00:00:00
Samba Send_MailSlot函数远程栈溢出漏洞
2007-12-12 00:00:00
Apple iPhone和iPod Touch Foundation参数内存破坏漏洞
2008-02-21 00:00:00
checkpoint_advisories
checkpoint_advisories
Samba Domain Controller Service Crafted Mailslot Name Buffer Overflow (CVE-2007-6015)
2010-07-26 00:00:00
X.Org X Font Server Handlers Integer Overflow (CVE-2007-4568)
2009-12-30 00:00:00
redhat
redhat
(RHSA-2007:1117) Critical: samba security update
2007-12-10 00:00:00
(RHSA-2007:1114) Critical: samba security and bug fix update
2007-12-10 00:00:00
(RHSA-2008:0029) Important: XFree86 security update
2008-01-18 00:00:00
prion
prion
Stack overflow
2007-12-13 21:46:00
Code injection
2008-02-12 20:00:00
Integer overflow
2007-10-05 21:17:00
ubuntucve
ubuntucve
CVE-2007-6015
2007-12-13 00:00:00
CVE-2007-4568
2007-10-05 00:00:00
osv
osv
samba - buffer overflow
2007-12-10 00:00:00
xfs
2007-10-09 00:00:00
debian
debian
[SECURITY] [DSA 1427-1] New samba packages fix arbitrary code execution
2007-12-10 00:00:00
[SECURITY] [DSA 1385-1] New xfs packages fix arbitrary code execution
2007-10-10 00:00:00
suse
suse
remote code execution in samba
2007-12-12 09:50:40
local privilege escalation in XOrg
2007-10-12 16:41:18
cve
cve
CVE-2007-6015
2007-12-13 21:46:00
CVE-2008-0039
2008-02-12 20:00:00
CVE-2008-0041
2008-02-12 20:00:00
samba
samba
Boundary failure in GETDC mailslot
2007-12-10 00:00:00
cvelist
cvelist
CVE-2007-6015
2007-12-13 21:00:00
CVE-2008-0039
2008-02-12 19:00:00
CVE-2008-0035
2008-01-16 01:00:00
slackware
slackware
[slackware-security] samba
2007-12-10 23:00:26
debiancve
debiancve
CVE-2007-6015
2007-12-13 21:46:00
altlinux
altlinux
Security fix for the ALT Linux 5 package samba version 3.0.28-alt1
2007-12-10 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: samba-3.0.28-0.fc7
2007-12-11 00:48:33
[SECURITY] Fedora 7 Update: xorg-x11-xfs-1.0.5-1.fc7
2007-12-11 00:51:18
[SECURITY] Fedora 8 Update: samba-3.0.28-0.fc8
2007-12-11 00:48:55
gentoo
gentoo
Samba: Execution of arbitrary code
2007-12-10 00:00:00
X Font Server: Multiple Vulnerabilities
2007-10-12 00:00:00
cert
cert
Samba "send_mailslot()" function buffer overflow
2008-02-20 00:00:00
Apple Mac OS X fails to properly handle a crafted URL
2008-02-12 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:22:12
freebsd
freebsd
samba -- buffer overflow vulnerability
2007-12-10 00:00:00
xfs -- multiple vulnerabilities
2007-10-02 00:00:00
ubuntu
ubuntu
Samba vulnerability
2007-12-18 00:00:00
oraclelinux
oraclelinux
Critical: samba security and bug fix update
2007-12-10 00:00:00
Important: XFree86 security update
2008-01-18 00:00:00
Important: xorg-x11 security update
2008-01-17 00:00:00
centos
centos
samba security update
2007-12-10 19:26:24
samba security update
2007-12-11 01:23:47
XFree86 security update
2008-01-18 15:04:04
vmware
vmware
Updated aacraid driver and Samba and Python service console updates
2008-02-04 00:00:00
Updated aacraid driver and Samba and Python service console updates
2008-02-04 00:00:00
JSON
Related for MACOSX_SECUPD2008-001.NASL
nessus35openvas81securityvulns7seebug3checkpoint_advisories2redhat4prion11ubuntucve2osv2debian2suse2cve11samba1cvelist10slackware1debiancve1altlinux1fedora5gentoo2cert2veracode1freebsd2ubuntu1oraclelinux3centos5vmware2