Lucene search
Copyright (C) 2017 Greenbone AGOPENVAS:1361412562310810994HistoryMay 19, 2017 - 12:00 a.m.
Apple Mac OS X Multiple Memory Corruption Vulnerabilities (HT207615)
2017-05-1900:00:00
Copyright (C) 2017 Greenbone AG
plugins.openvas.org
22
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
Apple Mac OS X is prone to multiple memory corruption vulnerabilities.
# SPDX-FileCopyrightText: 2017 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.810994");
script_version("2024-02-16T14:37:06+0000");
script_cve_id("CVE-2017-2432", "CVE-2017-5029");
script_tag(name:"cvss_base", value:"6.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_tag(name:"last_modification", value:"2024-02-16 14:37:06 +0000 (Fri, 16 Feb 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-04-22 20:19:00 +0000 (Fri, 22 Apr 2022)");
script_tag(name:"creation_date", value:"2017-05-19 11:40:15 +0530 (Fri, 19 May 2017)");
script_name("Apple Mac OS X Multiple Memory Corruption Vulnerabilities (HT207615)");
script_tag(name:"summary", value:"Apple Mac OS X is prone to multiple memory corruption vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Multiple flaws are due to multiple memory
corruption issues due to insufficient input validation and poor memory
handling.");
script_tag(name:"impact", value:"Successful exploitation will allow attacker
to execute arbitrary code and perform an out of bounds memory write.");
script_tag(name:"affected", value:"Apple Mac OS X version 10.12.x through
10.12.3, 10.11.x through 10.11.6 and 10.10.x through 10.10.5");
script_tag(name:"solution", value:"Upgrade Apple Mac OS X 10.12.x to 10.12.4
or apply the appropriate security patch for Apple Mac OS X 10.11.x and 10.10.x. Please see the references for more information.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
script_xref(name:"URL", value:"https://support.apple.com/en-us/HT207615");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2017 Greenbone AG");
script_family("Mac OS X Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/osx_name", "ssh/login/osx_version", re:"ssh/login/osx_version=^10\.1[0-2]");
exit(0);
}
include("version_func.inc");
osName = get_kb_item("ssh/login/osx_name");
if(!osName)
exit(0);
osVer = get_kb_item("ssh/login/osx_version");
if(!osVer || osVer !~ "^10\.1[0-2]" || "Mac OS X" >!< osName){
exit(0);
}
# if 10.11.x before 10.11.6 is running, update to 10.11.6 first and then apply patch
# if 10.10.x before 10.10.5 is running, update to 10.10.5 first and then apply patch
if(osVer =~ "^10\.1[01]")
{
if(version_in_range(version:osVer, test_version:"10.11", test_version2:"10.11.5") ||
version_in_range(version:osVer, test_version:"10.10", test_version2:"10.10.4")){
fix = "Upgrade to latest OS release and apply patch from vendor";
}
else if(osVer == "10.11.6" || osVer == "10.10.5")
{
buildVer = get_kb_item("ssh/login/osx_build");
## applying patch on 10.11.6 will upgrade build version to 15G1421
## applying patch on 10.10.5 will upgrade build version to 14F2315
if(buildVer)
{
if((osVer == "10.11.6" && version_is_less(version:buildVer, test_version:"15G1421")) ||
(osVer == "10.10.5" && version_is_less(version:buildVer, test_version:"14F2315")))
{
fix = "Apply patch from vendor";
osVer = osVer + " Build " + buildVer;
}
}
}
}
else if(version_in_range(version:osVer, test_version:"10.12", test_version2:"10.12.3")){
fix = "10.12.4";
}
if(fix)
{
report = report_fixed_ver(installed_version:osVer, fixed_version:fix);
security_message(data:report);
exit(0);
}
exit(99);
References
Related
prion
prion
Memory corruption
2017-04-02 01:59:00
Integer overflow
2017-04-24 23:59:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2017-001
2017-03-31 00:00:00
Debian DLA-866-1 : libxslt security update
2017-03-24 00:00:00
GLSA-201804-01 : libxslt: Multiple vulnerabilities
2018-04-04 00:00:00
redhatcve
redhatcve
CVE-2017-5029
2017-03-10 09:20:20
debian
debian
[SECURITY] [DLA 866-1] libxslt security update
2017-03-23 13:20:26
[SECURITY] [DSA 3810-1] chromium-browser security update
2017-03-15 12:29:29
[SECURITY] [DSA 3810-1] chromium-browser security update
2017-03-15 12:29:29
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0125)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-866-1)
2018-01-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1282-1)
2021-06-09 00:00:00
github
github
Nokogiri implementation of libxslt lacks integer overflow checks
2018-07-31 18:21:29
zdi
zdi
osv
osv
libxslt - security update
2017-03-23 00:00:00
Nokogiri implementation of libxslt lacks integer overflow checks
2018-07-31 18:21:29
CVE-2017-5029
2017-04-24 23:59:00
cve
cve
CVE-2017-2432
2017-04-02 01:59:00
CVE-2017-5029
2017-04-24 23:59:00
archlinux
archlinux
[ASA-201703-5] libxslt: arbitrary code execution
2017-03-12 00:00:00
[ASA-201703-4] chromium: multiple issues
2017-03-11 00:00:00
alpinelinux
alpinelinux
CVE-2017-5029
2017-04-24 23:59:00
ubuntucve
ubuntucve
CVE-2017-5029
2017-03-10 00:00:00
debiancve
debiancve
CVE-2017-5029
2017-04-24 23:59:00
mageia
mageia
Updated libxslt packages fix security vulnerability
2017-05-02 09:37:59
Updated chromium-browser-stable packages fix security vulnerability
2017-04-21 10:24:22
gentoo
gentoo
libxslt: Multiple vulnerabilities
2018-04-04 00:00:00
freebsd
freebsd
GitLab -- multiple vulnerabilities
2017-09-07 00:00:00
chromium -- multiple vulnerabilities
2017-03-09 00:00:00
rubygems
rubygems
Nokogiri gem contains two upstream vulnerabilities in libxslt 1.1.29
2017-05-08 21:00:00
photon
photon
ibm
ibm
apple
apple
About the security content of iCloud for Windows 6.2
2017-03-28 00:00:00
About the security content of iCloud for Windows 6.2 - Apple Support
2017-04-24 06:47:37
About the security content of watchOS 3.2
2017-03-27 00:00:00
ubuntu
ubuntu
Libxslt vulnerabilities
2017-04-28 00:00:00
Oxide vulnerabilities
2017-03-29 00:00:00
suse
suse
Security update for Chromium (important)
2017-03-18 00:09:23
Security update for Chromium (important)
2017-03-18 00:08:56
redhat
redhat
(RHSA-2017:0499) Important: chromium-browser security update
2017-03-14 06:03:42
chrome
chrome
Stable Channel Update for Desktop
2017-03-09 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: qt5-qtwebengine-5.9.0-4.fc26
2017-07-06 22:53:47
[SECURITY] Fedora 25 Update: qt5-qtwebengine-5.9.0-4.fc25
2017-07-12 03:27:41
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
Related for OPENVAS:1361412562310810994