Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.815819
Kategorie:Mac OS X Local Security Checks
Titel:Apple MacOSX Security Updates(HT210722)-01
Zusammenfassung:This host is installed with Apple Mac OS X; and is prone to multiple vulnerabilities.
Beschreibung:Summary:
This host is installed with Apple Mac OS X
and is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws exists due to,

- A validation issue related to improper input sanitization.

- A memory corruption issue was addressed with improved memory handling.

- An out-of-bounds read error related to improper input validation.

- An issue existed in the parsing of URLs.

- A validation issue related to handling of symlinks.

- An inconsistent user interface issue related to improper state management.

- Multiple memory corruption issues related to improper memory handling.

- A dynamic library loading issue existed in iTunes setup.

- A validation issue existed in the entitlement verification.

For more information refer the references.

Vulnerability Impact:
Successful exploitation allow attackers to
read restricted memory, execute arbitrary code with system privileges, conduct
data exfiltration, bypass authentication, disclosure of user information and
conduct spoofing attack.

Affected Software/OS:
Apple Mac OS X version 10.15

Solution:
Upgrade to Apple Mac OS X 10.15.1 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2019-8817
https://support.apple.com/HT210722
Common Vulnerability Exposure (CVE) ID: CVE-2019-8788
https://support.apple.com/HT210721
Common Vulnerability Exposure (CVE) ID: CVE-2019-8789
Common Vulnerability Exposure (CVE) ID: CVE-2019-8858
Common Vulnerability Exposure (CVE) ID: CVE-2019-8807
Common Vulnerability Exposure (CVE) ID: CVE-2019-8754
Common Vulnerability Exposure (CVE) ID: CVE-2017-7152
http://seclists.org/fulldisclosure/2019/Oct/49
http://seclists.org/fulldisclosure/2019/Oct/56
http://seclists.org/fulldisclosure/2019/Oct/54
Common Vulnerability Exposure (CVE) ID: CVE-2019-8805
Common Vulnerability Exposure (CVE) ID: CVE-2019-8803
https://support.apple.com/HT210723
https://support.apple.com/HT210724
Common Vulnerability Exposure (CVE) ID: CVE-2019-8801
https://support.apple.com/HT210726
Common Vulnerability Exposure (CVE) ID: CVE-2019-8794
Common Vulnerability Exposure (CVE) ID: CVE-2019-8829
Common Vulnerability Exposure (CVE) ID: CVE-2019-8784
https://support.apple.com/HT210727
https://support.apple.com/HT210728
CopyrightCopyright (C) 2019 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.