Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.102036
Category:Mac OS X Local Security Checks
Title:Mac OS X 10.5.8 Update / Mac OS X Security Update 2009-003
Summary:The remote host is missing Mac OS X 10.5.8 Update / Mac OS X Security Update 2009-003.
Description:Summary:
The remote host is missing Mac OS X 10.5.8 Update / Mac OS X Security Update 2009-003.

Affected Software/OS:
One or more of the following components are affected:

bzip2

CFNetwork

ColorSync

CoreTypes

Dock

Image RAW

ImageIO

Kernel

launchd

Login Window

MobileMe

Networking

XQuery

Solution:
Update your Mac OS X operating system. Please see the references for more information.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2008-1372
http://lists.apple.com/archives/security-announce/2009/Aug/msg00001.html
BugTraq ID: 28286
http://www.securityfocus.com/bid/28286
Bugtraq: 20080321 rPSA-2008-0118-1 bzip2 (Google Search)
http://www.securityfocus.com/archive/1/489968/100/0/threaded
Bugtraq: 20081203 VMSA-2008-0019 VMware Hosted products and patches for ESX and ESXi resolve a critical security issue and update bzip2 (Google Search)
http://www.securityfocus.com/archive/1/498863/100/0/threaded
Cert/CC Advisory: TA09-218A
http://www.us-cert.gov/cas/techalerts/TA09-218A.html
CERT/CC vulnerability note: VU#813451
http://www.kb.cert.org/vuls/id/813451
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00165.html
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00225.html
http://www.gentoo.org/security/en/glsa/glsa-200804-02.xml
http://security.gentoo.org/glsa/glsa-200903-40.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:075
http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html
http://www.ee.oulu.fi/research/ouspg/protos/testing/c10/archive/
NETBSD Security Advisory: NetBSD-SA2008-004
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-004.txt.asc
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10067
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6467
http://www.redhat.com/support/errata/RHSA-2008-0893.html
http://www.securitytracker.com/id?1020867
http://secunia.com/advisories/29410
http://secunia.com/advisories/29475
http://secunia.com/advisories/29497
http://secunia.com/advisories/29506
http://secunia.com/advisories/29656
http://secunia.com/advisories/29677
http://secunia.com/advisories/29698
http://secunia.com/advisories/29940
http://secunia.com/advisories/31204
http://secunia.com/advisories/31869
http://secunia.com/advisories/31878
http://secunia.com/advisories/36096
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473263
http://sunsolve.sun.com/search/document.do?assetkey=1-26-241786-1
SuSE Security Announcement: SUSE-SR:2008:011 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html
https://usn.ubuntu.com/590-1/
http://www.vupen.com/english/advisories/2008/0915
http://www.vupen.com/english/advisories/2008/2557
http://www.vupen.com/english/advisories/2009/2172
XForce ISS Database: bzip2-archives-code-execution(41249)
https://exchange.xforce.ibmcloud.com/vulnerabilities/41249
Common Vulnerability Exposure (CVE) ID: CVE-2009-1723
http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html
BugTraq ID: 35954
http://www.securityfocus.com/bid/35954
http://osvdb.org/56846
XForce ISS Database: macosx-cfnetwork-weak-security(52418)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52418
Common Vulnerability Exposure (CVE) ID: CVE-2009-1726
http://lists.apple.com/archives/security-announce/2010/Jun/msg00000.html
http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html
http://osvdb.org/56845
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7499
http://www.securitytracker.com/id?1022674
http://secunia.com/advisories/40105
http://secunia.com/advisories/40196
http://www.vupen.com/english/advisories/2010/1373
http://www.vupen.com/english/advisories/2010/1512
XForce ISS Database: macosx-colorsync-profile-bo(52419)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52419
XForce ISS Database: safari-colorsync-profile-bo(59162)
https://exchange.xforce.ibmcloud.com/vulnerabilities/59162
Common Vulnerability Exposure (CVE) ID: CVE-2009-1727
http://osvdb.org/56844
XForce ISS Database: macosx-coretype-code-execution(52420)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52420
Common Vulnerability Exposure (CVE) ID: CVE-2009-0151
http://osvdb.org/56847
XForce ISS Database: macosx-dock-security-bypass(52421)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52421
Common Vulnerability Exposure (CVE) ID: CVE-2009-1728
http://osvdb.org/56843
XForce ISS Database: macosx-imageraw-bo(52423)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52423
Common Vulnerability Exposure (CVE) ID: CVE-2009-1722
BugTraq ID: 35838
http://www.securityfocus.com/bid/35838
Debian Security Information: DSA-1842 (Google Search)
http://www.debian.org/security/2009/dsa-1842
http://www.mandriva.com/security/advisories?name=MDVSA-2009:191
http://secunia.com/advisories/36032
http://secunia.com/advisories/36753
http://www.ubuntu.com/usn/USN-831-1
http://www.vupen.com/english/advisories/2009/2035
Common Vulnerability Exposure (CVE) ID: CVE-2009-1721
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01286.html
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg01290.html
http://www.mandriva.com/security/advisories?name=MDVSA-2009:190
http://secunia.com/advisories/36030
http://secunia.com/advisories/36123
SuSE Security Announcement: SUSE-SR:2009:014 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-09/msg00000.html
Common Vulnerability Exposure (CVE) ID: CVE-2009-1720
Common Vulnerability Exposure (CVE) ID: CVE-2009-2188
http://lists.apple.com/archives/security-announce/2009/Aug/msg00002.html
http://osvdb.org/56842
XForce ISS Database: safari-exif-bo(52386)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52386
Common Vulnerability Exposure (CVE) ID: CVE-2009-0040
http://lists.apple.com/archives/security-announce/2009/May/msg00002.html
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
BugTraq ID: 33827
http://www.securityfocus.com/bid/33827
BugTraq ID: 33990
http://www.securityfocus.com/bid/33990
Bugtraq: 20090312 rPSA-2009-0046-1 libpng (Google Search)
http://www.securityfocus.com/archive/1/501767/100/0/threaded
Bugtraq: 20090529 VMSA-2009-0007 VMware Hosted products and ESX and ESXi patches resolve security issues (Google Search)
http://www.securityfocus.com/archive/1/503912/100/0/threaded
Bugtraq: 20090821 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server (Google Search)
http://www.securityfocus.com/archive/1/505990/100/0/threaded
Cert/CC Advisory: TA09-133A
http://www.us-cert.gov/cas/techalerts/TA09-133A.html
CERT/CC vulnerability note: VU#649212
http://www.kb.cert.org/vuls/id/649212
Debian Security Information: DSA-1750 (Google Search)
http://www.debian.org/security/2009/dsa-1750
Debian Security Information: DSA-1830 (Google Search)
http://www.debian.org/security/2009/dsa-1830
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00412.html
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00272.html
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00769.html
https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00771.html
http://security.gentoo.org/glsa/glsa-200903-28.xml
http://security.gentoo.org/glsa/glsa-201209-25.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2009:051
http://www.mandriva.com/security/advisories?name=MDVSA-2009:075
http://www.mandriva.com/security/advisories?name=MDVSA-2009:083
http://sourceforge.net/mailarchive/message.php?msg_name=e56ccc8f0902181726i200f4bf0n20d919473ec409b7%40mail.gmail.com
http://lists.vmware.com/pipermail/security-announce/2009/000062.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10316
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6458
http://www.redhat.com/support/errata/RHSA-2009-0315.html
http://www.redhat.com/support/errata/RHSA-2009-0325.html
http://www.redhat.com/support/errata/RHSA-2009-0333.html
http://www.redhat.com/support/errata/RHSA-2009-0340.html
http://secunia.com/advisories/33970
http://secunia.com/advisories/33976
http://secunia.com/advisories/34137
http://secunia.com/advisories/34140
http://secunia.com/advisories/34143
http://secunia.com/advisories/34145
http://secunia.com/advisories/34152
http://secunia.com/advisories/34210
http://secunia.com/advisories/34265
http://secunia.com/advisories/34272
http://secunia.com/advisories/34320
http://secunia.com/advisories/34324
http://secunia.com/advisories/34388
http://secunia.com/advisories/34462
http://secunia.com/advisories/34464
http://secunia.com/advisories/35074
http://secunia.com/advisories/35258
http://secunia.com/advisories/35302
http://secunia.com/advisories/35379
http://secunia.com/advisories/35386
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.405420
http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.433952
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020521.1-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259989-1
SuSE Security Announcement: SUSE-SA:2009:012 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00002.html
SuSE Security Announcement: SUSE-SA:2009:023 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00009.html
SuSE Security Announcement: SUSE-SR:2009:005 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html
http://www.vupen.com/english/advisories/2009/0469
http://www.vupen.com/english/advisories/2009/0473
http://www.vupen.com/english/advisories/2009/0632
http://www.vupen.com/english/advisories/2009/1297
http://www.vupen.com/english/advisories/2009/1451
http://www.vupen.com/english/advisories/2009/1462
http://www.vupen.com/english/advisories/2009/1522
http://www.vupen.com/english/advisories/2009/1560
http://www.vupen.com/english/advisories/2009/1621
XForce ISS Database: libpng-pointer-arrays-code-execution(48819)
https://exchange.xforce.ibmcloud.com/vulnerabilities/48819
Common Vulnerability Exposure (CVE) ID: CVE-2009-1235
BugTraq ID: 34203
http://www.securityfocus.com/bid/34203
https://www.exploit-db.com/exploits/8266
http://www.digit-labs.org/files/exploits/xnu-hfs-fcntl-v2.c
http://www.digit-labs.org/files/exploits/xnu-hfs-fcntl-v2.sh
http://www.informationweek.com/news/hardware/mac/showArticle.jhtml?articleID=216401181
http://www.securitytracker.com/id?1022671
http://secunia.com/advisories/34424
http://www.vupen.com/english/advisories/2009/0822
Common Vulnerability Exposure (CVE) ID: CVE-2009-2190
http://osvdb.org/56841
http://www.securitytracker.com/id?1022672
XForce ISS Database: macosx-launchd-dos(52425)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52425
Common Vulnerability Exposure (CVE) ID: CVE-2009-2191
http://osvdb.org/56840
XForce ISS Database: macosx-loginwindow-format-string(52428)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52428
Common Vulnerability Exposure (CVE) ID: CVE-2009-2192
http://osvdb.org/56839
XForce ISS Database: macosx-mobileme-session-hijack(52432)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52432
Common Vulnerability Exposure (CVE) ID: CVE-2009-2193
http://osvdb.org/56838
XForce ISS Database: macosx-appletalk-kernel-bo(52435)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52435
Common Vulnerability Exposure (CVE) ID: CVE-2009-2194
http://osvdb.org/56836
XForce ISS Database: macosx-descriptor-dos(52439)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52439
Common Vulnerability Exposure (CVE) ID: CVE-2008-0674
http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
BugTraq ID: 27786
http://www.securityfocus.com/bid/27786
BugTraq ID: 29009
http://www.securityfocus.com/bid/29009
BugTraq ID: 31681
http://www.securityfocus.com/bid/31681
Bugtraq: 20080228 rPSA-2008-0086-1 pcre (Google Search)
http://www.securityfocus.com/archive/1/488927/100/0/threaded
Bugtraq: 20080523 rPSA-2008-0176-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl (Google Search)
http://www.securityfocus.com/archive/1/492535/100/0/threaded
Debian Security Information: DSA-1499 (Google Search)
http://www.debian.org/security/2008/dsa-1499
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00371.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00632.html
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00181.html
http://security.gentoo.org/glsa/glsa-200803-24.xml
http://security.gentoo.org/glsa/glsa-200811-05.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:053
http://www.openwall.com/lists/oss-security/2008/05/02/2
http://secunia.com/advisories/28923
http://secunia.com/advisories/28957
http://secunia.com/advisories/28960
http://secunia.com/advisories/28985
http://secunia.com/advisories/28996
http://secunia.com/advisories/29027
http://secunia.com/advisories/29048
http://secunia.com/advisories/29175
http://secunia.com/advisories/29267
http://secunia.com/advisories/29282
http://secunia.com/advisories/30048
http://secunia.com/advisories/30345
http://secunia.com/advisories/31326
http://secunia.com/advisories/32222
http://secunia.com/advisories/32746
SuSE Security Announcement: SUSE-SR:2008:004 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00008.html
https://usn.ubuntu.com/581-1/
http://www.vupen.com/english/advisories/2008/0570
http://www.vupen.com/english/advisories/2008/0592
http://www.vupen.com/english/advisories/2008/1412
http://www.vupen.com/english/advisories/2008/2268
http://www.vupen.com/english/advisories/2008/2780
XForce ISS Database: pcre-characterclass-bo(40505)
https://exchange.xforce.ibmcloud.com/vulnerabilities/40505
CopyrightCopyright (C) 2010 LSS

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.