Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.805496
Category:Mac OS X Local Security Checks
Title:Apple Mac OS X Multiple Vulnerabilities -03 Mar15
Summary:This host is running Apple Mac OS X and; is prone to multiple vulnerabilities.
Description:Summary:
This host is running Apple Mac OS X and
is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to:

- The off-by-one overflow condition in the IOAcceleratorFamily component that
is triggered as user-supplied input is not properly validated

- The flaw in IOSurface that is triggered during the handling of a specially
crafted serialized object.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to execute arbitrary code on the targeted system, to conduct denial
of service and local user can obtain root privileges on the target system.

Affected Software/OS:
Apple Mac OS X version through
10.10.2

Solution:
Apply the fix from Apple Security Update
2015-002.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2015-1066
http://lists.apple.com/archives/security-announce/2015/Mar/msg00002.html
http://www.securitytracker.com/id/1031869
Common Vulnerability Exposure (CVE) ID: CVE-2015-1061
http://lists.apple.com/archives/security-announce/2015/Mar/msg00000.html
http://lists.apple.com/archives/security-announce/2015/Mar/msg00001.html
BugTraq ID: 73004
http://www.securityfocus.com/bid/73004
http://www.securitytracker.com/id/1031864
CopyrightCopyright (C) 2015 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.