Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2004-2024 Tenable Network Security, Inc.MACOSX_SECUPD20040126.NASL
HistoryJul 06, 2004 - 12:00 a.m.

Mac OS X Multiple Vulnerabilities (Security Update 2004-01-26)

2004-07-0600:00:00
This script is Copyright (C) 2004-2024 Tenable Network Security, Inc.
www.tenable.com
44

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.9

Confidence

High

EPSS

0.375

Percentile

97.3%

JSON

The remote host is missing Security Update 2004-01-26.

This security update includes the following components :

  • Apache 1.3
  • Classic
  • Mail
  • Safari
  • Windows File Sharing

For MacOS 10.1.5, it only includes the following :

  • Mail

This update contains various fixes which may allow an attacker to execute arbitrary code on the remote host.

#
# (C) Tenable Network Security, Inc.
#

if ( ! defined_func("bn_random") ) exit(0);


include("compat.inc");

if(description)
{
 script_id(12517);
 script_version("1.17");
 script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/28");

 script_cve_id("CVE-2004-0085", "CVE-2004-0086", "CVE-2004-0087", "CVE-2004-0088", "CVE-2004-0089",
               "CVE-2003-0789", "CVE-2003-0542", "CVE-2004-0092", "CVE-2003-0542");
 script_bugtraq_id(9069);

 script_name(english:"Mac OS X Multiple Vulnerabilities (Security Update 2004-01-26)");
 
 script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a Mac OS X security update." );
 script_set_attribute(attribute:"description", value:
"The remote host is missing Security Update 2004-01-26.

This security update includes the following components :

 - Apache 1.3
 - Classic
 - Mail
 - Safari
 - Windows File Sharing

For MacOS 10.1.5, it only includes the following :

 - Mail

This update contains various fixes which may allow an attacker to execute
arbitrary code on the remote host." );
 # http://web.archive.org/web/20040206220131/http://www.apple.com/downloads/macosx/apple/securityupdate_2004-01-26_%2810_2_8_Server%29.html
 script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f54f1ccf" );
 # http://web.archive.org/web/20040206214559/http://www.apple.com/downloads/macosx/apple/securityupdate_2004-01-26_%2810_1_5%29.html
 script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1a627a5f" );
 script_set_attribute(attribute:"solution", value:
"Install security update 2004-01-26. See 
http://support.apple.com/kb/HT1646 for more details." );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
 script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"false");
 script_cwe_id(119);

 script_set_attribute(attribute:"plugin_publication_date", value: "2004/07/06");
 script_set_attribute(attribute:"vuln_publication_date", value: "2003/10/29");
 script_set_attribute(attribute:"patch_publication_date", value: "2004/01/26");
 script_set_attribute(attribute:"plugin_type", value:"local");
 script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x:10.1");
 script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x:10.2");
 script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x:10.3");
 script_end_attributes();

 script_summary(english:"Check for Security Update 2004-01-26");
 script_category(ACT_GATHER_INFO);
 script_copyright(english:"This script is Copyright (C) 2004-2024 Tenable Network Security, Inc.");
 script_family(english:"MacOS X Local Security Checks");
 script_dependencies("ssh_get_info.nasl");
 script_require_keys("Host/MacOSX/packages");
 exit(0);
}

#

packages = get_kb_item("Host/MacOSX/packages");
if ( ! packages ) exit(0);

uname = get_kb_item("Host/uname");
# Security Update 2004-05-03 actually includes this update for MacOS X 10.2.8 Client
if ( egrep(pattern:"Darwin.* 6\.8\.", string:uname) )
{
 if ( egrep(pattern:"^SecUpd2004-05-03", string:packages) ) exit(0);
}

# MacOS X 10.1.5, 10.2.8 and 10.3.2 only
if ( egrep(pattern:"Darwin.* (5\.5\.|6\.8\.|7\.2\.)", string:uname) )
{
  if ( ! egrep(pattern:"^SecurityUpd2004-01-26", string:packages) ) { 
		security_hole(0);
		exit(0);
		}
 else  {
        set_kb_item(name:"CVE-2004-0174", value:TRUE);
        set_kb_item(name:"CVE-2003-0020", value:TRUE);
        }
}

if ( egrep(pattern:"Darwin.*", string:uname) )
{
        set_kb_item(name:"CVE-2004-0174", value:TRUE);
        set_kb_item(name:"CVE-2003-0020", value:TRUE);
}

Related

openvas 20
securityvulns 7
nessus 35
cert 5
gentoo 3
cvelist 11
nvd 11
cve 11
slackware 2
redhat 3
altlinux 3
f5 2
httpd 7
debiancve 4
suse 5
ubuntucve 2
seebug 3
zdt 1
packetstorm 2
exploitpack 1
exploitdb 1
openvas
openvas
Gentoo Security Advisory GLSA 200310-04 (Apache)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200310-04 (Apache)
2008-09-24 00:00:00
HP-UX Update for Apache mod_cgid HPSBUX00301
2009-05-05 00:00:00
securityvulns
securityvulns
[RHSA-2003:320-01] Updated httpd packages fix Apache security vulnerabilities
2003-12-17 00:00:00
NetSec Security Advisory: Multiple Vulnerabilities Resulting From Use Of Apple OSX HFS+
2005-02-17 00:00:00
MacOS X TruBlueEnvironment Buffer Overflow
2004-01-30 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : apache (MDKSA-2003:103)
2004-07-31 00:00:00
Apache 2.0.x < 2.0.48 Multiple Vulnerabilities (OF, Info Disc.)
2003-09-26 00:00:00
Solaris 9 (x86) : 114145-12
2004-07-12 00:00:00
cert
cert
Apache mod_rewrite vulnerable to buffer overflow via crafted regular expression
2004-02-03 00:00:00
Apache mod_alias vulnerable to buffer overflow via crafted regular expression
2004-02-03 00:00:00
Apple Mac OS X TruBlueEnvironment vulnerable to buffer overflow
2004-03-08 00:00:00
gentoo
gentoo
Apache: buffer overflows and a possible information disclosure
2003-10-31 00:00:00
Apache 1.3: Multiple vulnerabilities
2004-05-26 00:00:00
Apache: multiple buffer overflows
2003-10-28 00:00:00
cvelist
cvelist
CVE-2004-0087
2004-01-29 05:00:00
CVE-2004-0086
2004-01-29 05:00:00
CVE-2004-0088
2004-01-29 05:00:00
nvd
nvd
CVE-2004-0087
2004-03-03 05:00:00
CVE-2004-0088
2004-03-03 05:00:00
CVE-2004-0085
2004-03-03 05:00:00
cve
cve
CVE-2004-0087
2004-03-03 05:00:00
CVE-2004-0088
2004-03-03 05:00:00
CVE-2004-0085
2004-03-03 05:00:00
slackware
slackware
apache
2004-05-12 16:54:58
apache security update
2003-11-04 16:48:11
redhat
redhat
(RHSA-2003:360) apache security update
2003-12-10 00:00:00
(RHSA-2004:015) httpd security update
2004-01-13 00:00:00
(RHSA-2003:244) apache security update
2003-09-22 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.0.40-21
2003-02-24 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.0.40-21
2003-02-24 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.0.40-21
2003-02-24 00:00:00
f5
f5
SOL3144 - Apache mod_alias buffer overflow vulnerability - CAN-2003-0542
2007-05-16 00:00:00
K3144 : Apache mod_alias buffer overflow vulnerability CAN-2003-0542
2013-03-28 00:00:00
httpd
httpd
Apache Httpd < 2.0.48 : Local configuration regular expression overflow
2003-08-04 00:00:00
Apache Httpd < 1.3.29 : Local configuration regular expression overflow
2003-08-04 00:00:00
Apache Httpd < 2.0.49 : Error log escape filtering
2003-02-24 00:00:00
debiancve
debiancve
CVE-2003-0542
2003-11-03 05:00:00
CVE-2003-0789
2003-11-03 05:00:00
CVE-2003-0020
2004-09-01 04:00:00
suse
suse
remote file creation in kdelibs/kdelibs3
2004-05-26 11:35:37
remote code execution in cvs
2004-04-14 15:54:44
local privilege escalation in mc
2004-05-14 14:09:57
ubuntucve
ubuntucve
CVE-2003-0020
2003-03-18 00:00:00
CVE-2004-0174
2004-05-04 00:00:00
seebug
seebug
jetty 6.x - 7.x xss information disclosure injection
2009-10-26 00:00:00
jetty 6.x - 7.x xss, information disclosure, injection
2014-07-01 00:00:00
jetty 6.x - 7.x xss information disclosure injection
2009-10-26 00:00:00
zdt
zdt
jetty 6.x - 7.x xss, information disclosure, injection
2009-10-26 00:00:00
packetstorm
packetstorm
Jetty 6.x / 7.x Information Disclosure / XSS
2009-10-26 00:00:00
Nginx, Varnish, Cherokee, etc Log Injection
2010-01-11 00:00:00
exploitpack
exploitpack
jetty 6.x 7.x - Cross-Site Scripting Information Disclosure Injection
2009-10-26 00:00:00
exploitdb
exploitdb
jetty 6.x &lt; 7.x - Cross-Site Scripting / Information Disclosure / Injection
2009-10-26 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.9

Confidence

High

EPSS

0.375

Percentile

97.3%

JSON
Related for MACOSX_SECUPD20040126.NASL
openvas20securityvulns7nessus35cert5gentoo3cvelist11nvd11cve11slackware2redhat3altlinux3f52httpd7debiancve4suse5ubuntucve2seebug3zdt1packetstorm2exploitpack1exploitdb1