|
Family: MacOS X Local Security Checks --> Category: infos
Mac OS X Security Update 2006-008 Vulnerability Scan
Vulnerability Scan Summary Check for the presence of the SecUpdate 2006-008
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote host is missing a Mac OS X update which fixes a security
issue.
Description :
The remote host is running a version of Mac OS X 10.4 which does not have
the security update 2006-008 applied.
This update fixes a flaw in QuickTime which may allow a rogue website to
obtain the images rendered on the user screen. By combining this flaw
with Quartz Composer, a possible hacker may be able to obtain screen shots
of the remote host.
Solution :
Install the security update 2006-008 :
http://www.apple.com/support/downloads/securityupdate2006008universal.html
http://www.apple.com/support/downloads/securityupdate2006008ppc.html
See also :
http://docs.info.apple.com/article.html?artnum=304916
Threat Level:
Low / CVSS Base Score : 1.9
(AV:R/AC:H/Au:NR/C:P/I:N/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|