CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
92.4%
The remote host is running a version of Mac OS X 10.8 that is older than 10.8.4. The newer version contains numerous security-related fixes :
A local security-bypass vulnerability exists that affects the Disk Management component. The issue can be exploited by an unauthorized attacker to disable FileVault using the command-line. (CVE-2013-0985)
A security-bypass vulnerability in SMB file sharing can occur whereby an authenticated attacker can write files outside the shared directory. (CVE-2013-0990)
A remote buffer-overflow vulnerability exists when handling certain PICT images. (CVE-2013-0975)
A security-bypass vulnerability exists whereby an attacker with access to a user’s session may be able to log into previously accessed sites. An attacker can exploit this issue even if Private Browsing was used. (CVE-2013-0982)
A remote-code execution issue affects the text glyphs because of an unbounded stack allocation when handling maliciously crafted URLs. (CVE-2013-0983)
A remote-code execution vulnerability exists due to improper handling of text tracks. (CVE-2013-1024)
A buffer-overflow vulnerability exists in the Directory Service daemon that can be exploited via a specially crafted network message. (CVE-2013-0984)
Binary data 801016.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1945
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3207
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3210
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4108
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4109
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4576
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4577
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4619
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0050
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2110
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2131
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2333
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4929
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5519
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0975
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0982
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0983
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0985
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0986
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0987
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0988
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0989
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0990
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1024
support.apple.com/kb/HT5672