Test ID:	1.3.6.1.4.1.25623.1.0.805483
Category:	Mac OS X Local Security Checks
Title:	Apple Mac OS X Multiple Vulnerabilities -01 (Mar 2015)
Summary:	Apple Mac OS X is prone to multiple vulnerabilities.
Description:	Summary: Apple Mac OS X is prone to multiple vulnerabilities. Vulnerability Insight: Please see the references for more information on the vulnerabilities. Vulnerability Impact: Successful exploitation will allow attackers to bypass sandbox restrictions, execution of arbitrary code, information disclosure, privilege escalation and conduct denial of service. Affected Software/OS: Apple Mac OS X version 10.10.x through 10.10.1, 10.8.x through 10.8.5 and 10.9.x through 10.9.5 Solution: Upgrade to Apple Mac OS X version 10.10.2 or later or apply security update 2015-001 for 10.8.x and 10.9.x versions. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-8838 http://lists.apple.com/archives/security-announce/2015/Jan/msg00003.html http://www.securitytracker.com/id/1031650 XForce ISS Database: macosx-cve20148838-sec-bypass(100525) https://exchange.xforce.ibmcloud.com/vulnerabilities/100525 Common Vulnerability Exposure (CVE) ID: CVE-2014-8837 XForce ISS Database: macosx-cve20148837-priv-esc(100491) https://exchange.xforce.ibmcloud.com/vulnerabilities/100491 Common Vulnerability Exposure (CVE) ID: CVE-2014-8835 BugTraq ID: 71992 http://www.securityfocus.com/bid/71992 http://www.exploit-db.com/exploits/35742/ http://packetstormsecurity.com/files/135701/OS-X-Sysmond-XPC-Type-Confusion-Privilege-Escalation.html https://code.google.com/p/google-security-research/issues/detail?id=121 XForce ISS Database: macosx-cve20148835-priv-esc(100530) https://exchange.xforce.ibmcloud.com/vulnerabilities/100530 Common Vulnerability Exposure (CVE) ID: CVE-2014-8834 XForce ISS Database: macosx-cve20148834-info-disc(100531) https://exchange.xforce.ibmcloud.com/vulnerabilities/100531 Common Vulnerability Exposure (CVE) ID: CVE-2014-8833 XForce ISS Database: macosx-cve20148833-info-disc(100529) https://exchange.xforce.ibmcloud.com/vulnerabilities/100529 Common Vulnerability Exposure (CVE) ID: CVE-2014-8832 XForce ISS Database: macosx-cve20148832-info-disc(100528) https://exchange.xforce.ibmcloud.com/vulnerabilities/100528 Common Vulnerability Exposure (CVE) ID: CVE-2014-8831 XForce ISS Database: macosx-cve20148831-sec-bypass(100526) https://exchange.xforce.ibmcloud.com/vulnerabilities/100526 Common Vulnerability Exposure (CVE) ID: CVE-2014-8830 http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html XForce ISS Database: macosx-cve20148830-bo(100524) https://exchange.xforce.ibmcloud.com/vulnerabilities/100524 Common Vulnerability Exposure (CVE) ID: CVE-2014-8829 XForce ISS Database: macosx-cve20148829-code-exec(100523) https://exchange.xforce.ibmcloud.com/vulnerabilities/100523 Common Vulnerability Exposure (CVE) ID: CVE-2014-8828 XForce ISS Database: macosx-cve20148828-sec-bypass(100522) https://exchange.xforce.ibmcloud.com/vulnerabilities/100522 Common Vulnerability Exposure (CVE) ID: CVE-2014-8827 XForce ISS Database: macosx-cve20148827-sec-bypass(100521) https://exchange.xforce.ibmcloud.com/vulnerabilities/100521 Common Vulnerability Exposure (CVE) ID: CVE-2014-8826 BugTraq ID: 72341 http://www.securityfocus.com/bid/72341 Bugtraq: 20150128 [AMPLIA-ARA100614] OS X Gatekeeper Bypass Vulnerability (Google Search) http://www.securityfocus.com/archive/1/534567/100/0/threaded http://www.exploit-db.com/exploits/35934 http://seclists.org/fulldisclosure/2015/Jan/109 http://packetstormsecurity.com/files/130147/OS-X-Gatekeeper-Bypass.html https://www.ampliasecurity.com/advisories/os-x-gatekeeper-bypass-vulnerability.html http://www.osvdb.org/117659 XForce ISS Database: macosx-cve20148826-sec-bypass(100519) https://exchange.xforce.ibmcloud.com/vulnerabilities/100519 Common Vulnerability Exposure (CVE) ID: CVE-2014-8825 XForce ISS Database: macosx-cve20148825-spoofing(100517) https://exchange.xforce.ibmcloud.com/vulnerabilities/100517 Common Vulnerability Exposure (CVE) ID: CVE-2014-8824 XForce ISS Database: macosx-cve20148824-priv-esc(100516) https://exchange.xforce.ibmcloud.com/vulnerabilities/100516 Common Vulnerability Exposure (CVE) ID: CVE-2014-8823 http://code.google.com/p/google-security-research/issues/detail?id=21 XForce ISS Database: macosx-cve20148823-priv-esv(100514) https://exchange.xforce.ibmcloud.com/vulnerabilities/100514 Common Vulnerability Exposure (CVE) ID: CVE-2014-8822 XForce ISS Database: macosx-cve20148822-priv-esc(100513) https://exchange.xforce.ibmcloud.com/vulnerabilities/100513 Common Vulnerability Exposure (CVE) ID: CVE-2014-8821 XForce ISS Database: macosx-cve20148821-priv-esc(100502) https://exchange.xforce.ibmcloud.com/vulnerabilities/100502 Common Vulnerability Exposure (CVE) ID: CVE-2014-8820 XForce ISS Database: macosx-cve20148820-priv-esc(100501) https://exchange.xforce.ibmcloud.com/vulnerabilities/100501 Common Vulnerability Exposure (CVE) ID: CVE-2014-8819 XForce ISS Database: macosx-cve20148819-priv-esc(100500) https://exchange.xforce.ibmcloud.com/vulnerabilities/100500 Common Vulnerability Exposure (CVE) ID: CVE-2014-8817 https://code.google.com/p/google-security-research/issues/detail?id=80 XForce ISS Database: macosx-cve20148817-priv-esc(100496) https://exchange.xforce.ibmcloud.com/vulnerabilities/100496 Common Vulnerability Exposure (CVE) ID: CVE-2014-8816 XForce ISS Database: macosx-cve20148816-code-exec(100495) https://exchange.xforce.ibmcloud.com/vulnerabilities/100495 Common Vulnerability Exposure (CVE) ID: CVE-2014-4499 Common Vulnerability Exposure (CVE) ID: CVE-2014-4498 https://trmm.net/Thunderstrike Common Vulnerability Exposure (CVE) ID: CVE-2014-4497
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.