|Title:||Microsoft PowerShell Core RCE and Tampering Vulnerabilities (Mac OS X)|
|Summary:||This host is installed with PowerShell Core and is; prone to remote code execution and tampering vulnerabilities.|
This host is installed with PowerShell Core and is
prone to remote code execution and tampering vulnerabilities.
A remote code execution vulnerability exists
when PowerShell improperly handles specially crafted files.
A tampering vulnerability exists in PowerShell that could allow an attacker
to execute unlogged code.
Successful exploitation will allow attackers
to execute malicious code on a vulnerable system and to bypass certain security
restrictions and perform unauthorized actions.
PowerShell Core versions 6.0 to 6.0.4 and 6.1 on Mac OS X.
Upgrade to PowerShell Core 6.0.5 or 6.1.1 or later.
For updates refer to Reference links.
Common Vulnerability Exposure (CVE) ID: CVE-2018-8256|
BugTraq ID: 105781
Common Vulnerability Exposure (CVE) ID: CVE-2018-8415
BugTraq ID: 105792
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 71225 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.