Multiple vulnerabilities in OS X Server

Описание

Multiple serious vulnerabilities have been found in Apple OS X Server. Malicious users can exploit these vulnerabilities to bypass security restrictions or obtain sensitive information.

Below is a complete list of vulnerabilities

1. An unknown vulnerability can be exploited remotely via vectors related to Wiki Server;
2. Improper pathname can be exploited remotely via a specially designed packets;
3. Obsolete OpenSSL version can be exploited remotely via a padding-oracle attack.

Первичный источник обнаружения

• Apple article
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Apple-OS-X

Список CVE

• CVE-2014-3566
  warning
• CVE-2015-1151
  warning
• CVE-2015-1150
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com