English | Deutsch | Español
 
Startseite ▼
Startseite Über uns Kontact Datenschutz Partnerprogramme Zeugnisse In der Presse Mailinglisten Missbrauch Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Sicherheits
Überprüfungs ▼
Home Dediziert Erweitert Standard Wiederkehrend Risikolos Desktop Basis Sicherheits Segal FAQ Preis/Funktionszusammenfassung Bestellen Neue Anfälligkeiten Alle Anfälligkeiten Vertraulichkeit Anfälligkeiten Suche Durchführen Terminkalender IP Permissions Maßgeschneidert Warteschlange Erinnerer Siegel Berichte Berichts Stil
Verwaltetes
DNS ▼
Info Bestellen/Erneuern FAQ AUP Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password
Netzwerk
Überwachung ▼
Enterprise Erweiterte Standard Gratis Test FAQ Preis/Funktionszusammenfassung Bestellen Beispiele
Konfigurieren/Status Alarm Profile
Recherce
Berichte ▼
Home FAQ Glossary Archive
 Anmeldung/Registrierung 
 
 Anfälligkeitssuche        Suche in 324607 CVE Beschreibungen
und 145615 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.817133
Kategorie:Mac OS X Local Security Checks
Titel:Apple Mac OS X Security Update (HT211170)-04
Zusammenfassung:Apple Mac OS X is prone to multiple vulnerabilities.
Beschreibung:Summary:
Apple Mac OS X is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws exist due to:

- An error in permissions issued.

- An out-of-bounds write error.

- A memory initialization error.

- Multiple out-of-bounds read errors.

- Multiple memory corruption issues.

- An error in state management.

- An integer overflow.

- An authorization issue.

- An error in input validation.

- Presence of vulnerable code.

- A race condition.

- An error in the handling of environment variables.

- A logic error resulting in memory corruption.

- A use after free error.

Vulnerability Impact:
Successful exploitation will allow remote
attackers gain root privileges, conduct a denial-of-service, execute arbitrary
code, read kernel memory, elevate privileges, escape sandbox and gain access to
sensitive information.

Affected Software/OS:
Apple Mac OS X versions 10.13.x through
10.13.6, 10.14.x through 10.14.6 and 10.15.x through 10.15.4

Solution:
Apply security update 2020-003 for Apple
Mac OS X version 10.13.x and 10.14.x, or upgrade to version 10.15.5 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2020-9817
Cisco Security Advisory: 20210505 MacOS Local Privilege Escalation Exploitable through Cisco AnyConnect Secure Mobility Client
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-mac-priv-esc-VqST2nrT
https://support.apple.com/HT211170
Common Vulnerability Exposure (CVE) ID: CVE-2020-9816
https://support.apple.com/HT211168
https://support.apple.com/HT211171
https://support.apple.com/HT211175
Common Vulnerability Exposure (CVE) ID: CVE-2020-9830
Common Vulnerability Exposure (CVE) ID: CVE-2020-9833
Common Vulnerability Exposure (CVE) ID: CVE-2020-9832
Common Vulnerability Exposure (CVE) ID: CVE-2020-9834
Common Vulnerability Exposure (CVE) ID: CVE-2020-9811
Common Vulnerability Exposure (CVE) ID: CVE-2020-9812
Common Vulnerability Exposure (CVE) ID: CVE-2020-9841
Common Vulnerability Exposure (CVE) ID: CVE-2020-9789
https://support.apple.com/HT211178
https://support.apple.com/HT211179
https://support.apple.com/HT211181
Common Vulnerability Exposure (CVE) ID: CVE-2020-9790
Common Vulnerability Exposure (CVE) ID: CVE-2019-20044
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FP64FFIZI2CKQOEAOI5A72PVQULE7ZZC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PN5V7MPHRRP7QNHOEK56S7QGRU53WUN6/
http://seclists.org/fulldisclosure/2020/May/49
http://seclists.org/fulldisclosure/2020/May/53
http://seclists.org/fulldisclosure/2020/May/59
http://seclists.org/fulldisclosure/2020/May/55
https://security.gentoo.org/glsa/202003-55
http://zsh.sourceforge.net/releases.html
https://github.com/XMB5/zsh-privileged-upgrade
https://www.zsh.org/mla/zsh-announce/141
https://lists.debian.org/debian-lts-announce/2020/03/msg00004.html
https://lists.debian.org/debian-lts-announce/2020/12/msg00000.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-9808
Common Vulnerability Exposure (CVE) ID: CVE-2020-9809
Common Vulnerability Exposure (CVE) ID: CVE-2020-9847
Common Vulnerability Exposure (CVE) ID: CVE-2020-9822
Common Vulnerability Exposure (CVE) ID: CVE-2020-9821
Common Vulnerability Exposure (CVE) ID: CVE-2020-9826
Common Vulnerability Exposure (CVE) ID: CVE-2020-9797
Common Vulnerability Exposure (CVE) ID: CVE-2020-9839
Common Vulnerability Exposure (CVE) ID: CVE-2019-14868
20200529 APPLE-SA-2020-05-26-3 macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra
[debian-lts-announce] 20200720 [SECURITY] [DLA 2284-1] ksh security update
https://lists.debian.org/debian-lts-announce/2020/07/msg00015.html
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14868
https://github.com/att/ast/commit/c7de8b641266bac7c77942239ac659edfee9ecd2
https://support.apple.com/kb/HT211170
Common Vulnerability Exposure (CVE) ID: CVE-2020-9813
Common Vulnerability Exposure (CVE) ID: CVE-2020-9814
Common Vulnerability Exposure (CVE) ID: CVE-2020-9795
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.



© 1998-2025 E-Soft Inc. Alle Rechte vorbehalten.