ID de Prueba:	1.3.6.1.4.1.25623.1.0.812402
Categoría:	Mac OS X Local Security Checks
Título:	Apple Mac OS X Security Updates (HT208331)-03
Resumen:	Apple Mac OS X is prone to a privilege escalation vulnerability.
Descripción:	Summary: Apple Mac OS X is prone to a privilege escalation vulnerability. Vulnerability Insight: Multiple flaws exist due to, - Permissions issue in the handling of screen sharing sessions. - A logic error existed in the validation of credentials. Vulnerability Impact: Successful exploitation will allow remote attackers to access any file readable by root and bypass administrator authentication. Affected Software/OS: Apple Mac OS X versions 10.13.x through 10.13.1 and 10.12.x through 10.12.6 prior to Security Update 2017-002 Sierra. Solution: For Apple Mac OS X version 10.13.x before 10.13.2 update to 10.13.2 and for versions 10.12.x through 10.12.6 apply Security Update 2017-002 Sierra. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-13872 BugTraq ID: 101981 http://www.securityfocus.com/bid/101981 https://www.exploit-db.com/exploits/43201/ https://www.exploit-db.com/exploits/43248/ https://arstechnica.com/information-technology/2017/11/macos-bug-lets-you-log-in-as-admin-with-no-password-required/ https://github.com/rapid7/metasploit-framework/pull/9302 https://objective-see.com/blog/blog_0x24.html https://support.apple.com/HT208315 https://www.wired.com/story/macos-update-undoes-apple-root-bug-patch/ http://www.securitytracker.com/id/1039875 Common Vulnerability Exposure (CVE) ID: CVE-2017-7158
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.