Lucene search

K
openvasCopyright (C) 2010 LSSOPENVAS:102026
HistoryMay 12, 2010 - 12:00 a.m.

Mac OS X Security Update 2009-001

2010-05-1200:00:00
Copyright (C) 2010 LSS
plugins.openvas.org
11

0.181 Low

EPSS

Percentile

95.7%

The remote host is missing Security Update 2009-001.
One or more of the following components are affected:

AFP Server
Apple Pixlet Video
CarbonCore
CFNetwork
Certificate Assistant
ClamAV
CoreText
CUPS
DS Tools
fetchmail
Folder Manager
FSEvents
Network Time
perl
Printing
python
Remote Apple Events
Safari RSS
servermgrd
SMB
SquirrelMail
X11
XTerm

###################################################################
# OpenVAS Vulnerability Test
#
# Mac OS X Security Update 2009-001
#
# LSS-NVT-2010-015
#
# Developed by LSS Security Team <http://security.lss.hr>
#
# Copyright (C) 2010 LSS <http://www.lss.hr>
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public
# License along with this program. If not, see
# <http://www.gnu.org/licenses/>.
###################################################################

tag_solution = "Update your Mac OS X operating system.

 For more information see:
 http://support.apple.com/kb/HT3438";

tag_summary = "The remote host is missing Security Update 2009-001.
 One or more of the following components are affected:

 AFP Server
 Apple Pixlet Video
 CarbonCore
 CFNetwork
 Certificate Assistant
 ClamAV
 CoreText
 CUPS
 DS Tools
 fetchmail
 Folder Manager
 FSEvents
 Network Time
 perl
 Printing
 python
 Remote Apple Events
 Safari RSS
 servermgrd
 SMB
 SquirrelMail
 X11
 XTerm";


if(description)
{
 script_id(102026);
 script_version("$Revision: 5394 $");
 script_tag(name:"last_modification", value:"$Date: 2017-02-22 10:22:42 +0100 (Wed, 22 Feb 2017) $");
 script_tag(name:"creation_date", value:"2010-05-12 14:48:44 +0200 (Wed, 12 May 2010)");
 script_cve_id("CVE-2009-0142","CVE-2009-0009","CVE-2009-0020","CVE-2009-0011","CVE-2008-5050","CVE-2008-5314","CVE-2009-0012","CVE-2008-5183","CVE-2009-0013","CVE-2007-4565","CVE-2008-2711","CVE-2009-0014","CVE-2009-0015","CVE-2008-1927","CVE-2009-0017","CVE-2008-1679","CVE-2008-1721","CVE-2008-1887","CVE-2008-2315","CVE-2008-2316","CVE-2008-3142","CVE-2008-3144","CVE-2008-4864","CVE-2007-4965","CVE-2008-5031","CVE-2009-0018","CVE-2009-0019","CVE-2009-0137","CVE-2009-0138","CVE-2009-0139","CVE-2009-0140","CVE-2008-2379","CVE-2008-3663","CVE-2008-1377","CVE-2008-1379","CVE-2008-2360","CVE-2008-2361","CVE-2008-2362","CVE-2006-1861","CVE-2006-3467","CVE-2007-1351","CVE-2008-1806","CVE-2008-1807","CVE-2008-1808","CVE-2007-1352","CVE-2007-1667","CVE-2009-0141");
 script_name("Mac OS X Security Update 2009-001");
 script_tag(name:"cvss_base", value:"10.0");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
 script_category(ACT_GATHER_INFO);
 script_copyright("Copyright (C) 2010 LSS");
 script_family("Mac OS X Local Security Checks");
 script_require_ports("Services/ssh", 22);
 script_dependencies("gather-package-list.nasl");
 script_mandatory_keys("ssh/login/osx_name","ssh/login/osx_version");
 script_tag(name : "summary" , value : tag_summary);
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name:"qod_type", value:"package");
 script_tag(name:"solution_type", value:"VendorFix");
 exit(0);
}

include("pkg-lib-macosx.inc");
include("version_func.inc");

ssh_osx_name = get_kb_item("ssh/login/osx_name");
if (!ssh_osx_name) exit (0);

ssh_osx_ver = get_kb_item("ssh/login/osx_version");
if (!ssh_osx_ver) exit (0);

ssh_osx_rls = ssh_osx_name + ' ' + ssh_osx_ver;

pkg_for_ver = make_list("Mac OS X 10.5.6","Mac OS X Server 10.5.6","Mac OS X 10.4.11","Mac OS X Server 10.4.11");

if (rlsnotsupported(rls:ssh_osx_rls, list:pkg_for_ver)) { security_message(0); exit(0);}

if (osx_rls_name(rls:ssh_osx_rls) == osx_rls_name(rls:"Mac OS X 10.5.6")) {
    if (version_is_less(version:osx_ver(ver:ssh_osx_rls), test_version:osx_ver(ver:"Mac OS X 10.5.6"))) { security_message(0); exit(0);}
    else if ((ssh_osx_ver==osx_ver(ver:"Mac OS X 10.5.6")) && (isosxpkgvuln(fixed:"com.apple.pkg.update.security.", diff:"2009.001"))) { security_message(0); exit(0);}
}
if (osx_rls_name(rls:ssh_osx_rls) == osx_rls_name(rls:"Mac OS X Server 10.5.6")) {
    if (version_is_less(version:osx_ver(ver:ssh_osx_rls), test_version:osx_ver(ver:"Mac OS X Server 10.5.6"))) { security_message(0); exit(0);}
    else if ((ssh_osx_ver==osx_ver(ver:"Mac OS X Server 10.5.6")) && (isosxpkgvuln(fixed:"com.apple.pkg.update.security.", diff:"2009.001"))) { security_message(0); exit(0);}
}
if (osx_rls_name(rls:ssh_osx_rls) == osx_rls_name(rls:"Mac OS X 10.4.11")) {
    if (version_is_less(version:osx_ver(ver:ssh_osx_rls), test_version:osx_ver(ver:"Mac OS X 10.4.11"))) { security_message(0); exit(0);}
    else if ((ssh_osx_ver==osx_ver(ver:"Mac OS X 10.4.11")) && (isosxpkgvuln(fixed:"com.apple.pkg.update.security.", diff:"2009.001"))) { security_message(0); exit(0);}
}
if (osx_rls_name(rls:ssh_osx_rls) == osx_rls_name(rls:"Mac OS X Server 10.4.11")) {
    if (version_is_less(version:osx_ver(ver:ssh_osx_rls), test_version:osx_ver(ver:"Mac OS X Server 10.4.11"))) { security_message(0); exit(0);}
    else if ((ssh_osx_ver==osx_ver(ver:"Mac OS X Server 10.4.11")) && (isosxpkgvuln(fixed:"com.apple.pkg.update.security.", diff:"2009.001"))) { security_message(0); exit(0);}
}

0.181 Low

EPSS

Percentile

95.7%

Related for OPENVAS:102026