KLA10570
Multiple vulnerabilities in OS X Server
Updated: 06/01/2019
Detect date
?
04/28/2015
Severity
?
Warning
Description

Multiple serious vulnerabilities have been found in Apple OS X Server. Malicious users can exploit these vulnerabilities to bypass security restrictions or obtain sensitive information.

Below is a complete list of vulnerabilities

  1. An unknown vulnerability can be exploited remotely via vectors related to Wiki Server;
  2. Improper pathname can be exploited remotely via a specially designed packets;
  3. Obsolete OpenSSL version can be exploited remotely via a padding-oracle attack.
Affected products

Apple OS X Server versions earlier than 4.1

Solution

Update to the latest version
Get OS X Server

Original advisories

Apple article

Impacts
?
OSI 
[?]

DoS 
[?]

SB 
[?]

PE 
[?]

LoI 
[?]
Related products
Apple OS X
CVE-IDS
?
CVE-2014-35664.3Warning
CVE-2015-11515.0Critical
CVE-2015-11505.0Critical