Apple Safari, QuickTime and iTunes (PVS) - Tenable Network Security
02.04.2013 Views
Share Embed Flag

Apple Safari, QuickTime and iTunes (PVS) - Tenable Network Security

Apple Safari, QuickTime and iTunes (PVS) - Tenable Network Security

Apple Safari, QuickTime and iTunes (PVS) - Tenable Network Security

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
static.tenable.com

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

TENABLE NETWORK SECURITY, INC.<br />

<strong>Apple</strong> <strong>Safari</strong>,<br />

<strong>QuickTime</strong> <strong>and</strong><br />

<strong>iTunes</strong> (<strong>PVS</strong>)<br />

May 28, 2012 at 9:02pm CDT<br />

Dave Breslin [dbreslin]<br />

<strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

Confidential: The following report contains confidential information. Do not distribute, email, fax,<br />

or transfer via any electronic mechanism unless it has been approved by the recipient company's<br />

security policy. All copies <strong>and</strong> backups of this document should be saved on protected storage at all<br />

times. Do not share any of the information contained within this report with anyone unless they are<br />

authorized to view the information. Violating any of the previous instructions is grounds for termination.

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

Table of Contents<br />

Summary ........................................................................................................................................................ 1<br />

<strong>Apple</strong> <strong>Safari</strong> ................................................................................................................................................2<br />

<strong>Apple</strong> <strong>QuickTime</strong> ...............................................................................................................................11<br />

<strong>Apple</strong> <strong>iTunes</strong> ..........................................................................................................................................14<br />

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> Vulnerabilities with Known<br />

Exploits Summary ........................................................................................................................... 21<br />

Table of Contents<br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> i

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

Summary<br />

5 Day Vulnerability Trending - CVSS >= 4<br />

Summary<br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 1

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Apple</strong> <strong>Safari</strong> Host Detection<br />

IP Address NetBIOS Name DNS Name MAC Address<br />

10.100.0.20 ITSDEPT\MM1015 mm1015.itsdept.com 00:11:24:c8:69:51<br />

10.100.0.24 ITSDEPT\MM1018 mm1018.itsdept.com 00:11:24:c8:69:54<br />

10.100.0.27 ITSDEPT\MM1019 mm1019.itsdept.com 00:11:24:c8:70:01<br />

10.100.0.30 ITSDEPT\MM1023 mm1023.itsdept.com 00:11:24:c8:70:04<br />

10.200.0.5 ITSDEPT\DT1004 dt1004.itsdept.com 08:00:27:41:88:b7<br />

10.200.0.18 ITSDEPT\DT1022 dt1022.itsdept.com 08:00:27:89:23:32<br />

192.168.1.13<br />

192.168.2.72<br />

Vulnerability Summary - CVSS >= 4<br />

Plugin Total Severity Plugin Name Family<br />

6483 3 High<br />

6346 3 High<br />

6038 2 High<br />

5992 2 High<br />

5890 2 High<br />

5813 2 High<br />

5711 2 High<br />

5655 2 High<br />

<strong>Safari</strong> <<br />

5.1.7 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> <<br />

5.1.4 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> <<br />

5.1.1 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> < 5.1 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> <<br />

5.0.5 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> <<br />

5.0.4 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> < 4.1.3 /<br />

5.0.3 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> < 4.1.2 /<br />

5.0.2 Multiple<br />

Vulnerabilities<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 2

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Summary<br />

CVE Total Severity<br />

CVE-2010-1205 2 High<br />

CVE-2010-1383 2 High<br />

CVE-2010-1420 2 High<br />

CVE-2010-1805 2 High<br />

CVE-2010-1806 2 High<br />

CVE-2010-1807 2 High<br />

CVE-2010-1812 2 High<br />

CVE-2010-1813 2 High<br />

CVE-2010-1814 2 High<br />

CVE-2010-1815 2 High<br />

CVE-2010-1822 2 High<br />

CVE-2010-1823 2 High<br />

CVE-2010-1824 2 High<br />

CVE-2010-2249 2 High<br />

CVE-2010-3116 2 High<br />

CVE-2010-3257 2 High<br />

CVE-2010-3259 2 High<br />

CVE-2010-3803 2 High<br />

CVE-2010-3804 2 High<br />

CVE-2010-3805 2 High<br />

CVE-2010-3808 2 High<br />

CVE-2010-3809 2 High<br />

CVE-2010-3810 2 High<br />

CVE-2010-3811 2 High<br />

CVE-2010-3812 2 High<br />

CVE-2010-3813 2 High<br />

CVE-2010-3816 2 High<br />

CVE-2010-3817 2 High<br />

CVE-2010-3818 2 High<br />

CVE-2010-3819 2 High<br />

CVE-2010-3820 2 High<br />

CVE-2010-3821 2 High<br />

CVE-2010-3822 2 High<br />

CVE-2010-3823 2 High<br />

CVE-2010-3824 2 High<br />

CVE-2010-3826 2 High<br />

CVE-2010-3829 2 High<br />

CVE-2010-4008 2 High<br />

CVE-2010-4494 2 High<br />

CVE-2011-0111 2 High<br />

CVE-2011-0112 2 High<br />

CVE-2011-0113 2 High<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 3

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-0114 2 High<br />

CVE-2011-0115 2 High<br />

CVE-2011-0116 2 High<br />

CVE-2011-0117 2 High<br />

CVE-2011-0118 2 High<br />

CVE-2011-0119 2 High<br />

CVE-2011-0120 2 High<br />

CVE-2011-0121 2 High<br />

CVE-2011-0122 2 High<br />

CVE-2011-0123 2 High<br />

CVE-2011-0124 2 High<br />

CVE-2011-0125 2 High<br />

CVE-2011-0126 2 High<br />

CVE-2011-0127 2 High<br />

CVE-2011-0128 2 High<br />

CVE-2011-0129 2 High<br />

CVE-2011-0130 2 High<br />

CVE-2011-0131 2 High<br />

CVE-2011-0132 2 High<br />

CVE-2011-0133 2 High<br />

CVE-2011-0134 2 High<br />

CVE-2011-0135 2 High<br />

CVE-2011-0136 2 High<br />

CVE-2011-0137 2 High<br />

CVE-2011-0138 2 High<br />

CVE-2011-0139 2 High<br />

CVE-2011-0140 2 High<br />

CVE-2011-0141 2 High<br />

CVE-2011-0142 2 High<br />

CVE-2011-0143 2 High<br />

CVE-2011-0144 2 High<br />

CVE-2011-0145 2 High<br />

CVE-2011-0146 2 High<br />

CVE-2011-0147 2 High<br />

CVE-2011-0148 2 High<br />

CVE-2011-0149 2 High<br />

CVE-2011-0150 2 High<br />

CVE-2011-0151 2 High<br />

CVE-2011-0152 2 High<br />

CVE-2011-0153 2 High<br />

CVE-2011-0154 2 High<br />

CVE-2011-0155 2 High<br />

CVE-2011-0156 2 High<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 4

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-0160 2 High<br />

CVE-2011-0161 2 High<br />

CVE-2011-0163 2 High<br />

CVE-2011-0164 2 High<br />

CVE-2011-0165 2 High<br />

CVE-2011-0166 2 High<br />

CVE-2011-0167 2 High<br />

CVE-2011-0168 2 High<br />

CVE-2011-0169 2 High<br />

CVE-2011-0170 2 High<br />

CVE-2011-0191 2 High<br />

CVE-2011-0192 2 High<br />

CVE-2011-0195 2 High<br />

CVE-2011-0200 2 High<br />

CVE-2011-0201 2 High<br />

CVE-2011-0202 2 High<br />

CVE-2011-0204 2 High<br />

CVE-2011-0206 2 High<br />

CVE-2011-0214 2 High<br />

CVE-2011-0215 2 High<br />

CVE-2011-0216 2 High<br />

CVE-2011-0217 2 High<br />

CVE-2011-0218 2 High<br />

CVE-2011-0219 2 High<br />

CVE-2011-0221 2 High<br />

CVE-2011-0222 2 High<br />

CVE-2011-0223 2 High<br />

CVE-2011-0225 2 High<br />

CVE-2011-0232 2 High<br />

CVE-2011-0233 2 High<br />

CVE-2011-0234 2 High<br />

CVE-2011-0235 2 High<br />

CVE-2011-0237 2 High<br />

CVE-2011-0238 2 High<br />

CVE-2011-0240 2 High<br />

CVE-2011-0241 2 High<br />

CVE-2011-0242 2 High<br />

CVE-2011-0244 2 High<br />

CVE-2011-0253 2 High<br />

CVE-2011-0254 2 High<br />

CVE-2011-0255 2 High<br />

CVE-2011-0981 2 High<br />

CVE-2011-0983 2 High<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 5

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-1107 2 High<br />

CVE-2011-1109 2 High<br />

CVE-2011-1114 2 High<br />

CVE-2011-1115 2 High<br />

CVE-2011-1117 2 High<br />

CVE-2011-1121 2 High<br />

CVE-2011-1188 2 High<br />

CVE-2011-1190 2 High<br />

CVE-2011-1203 2 High<br />

CVE-2011-1204 2 High<br />

CVE-2011-1288 2 High<br />

CVE-2011-1290 2 High<br />

CVE-2011-1293 2 High<br />

CVE-2011-1295 2 High<br />

CVE-2011-1296 2 High<br />

CVE-2011-1344 2 High<br />

CVE-2011-1440 2 High<br />

CVE-2011-1449 2 High<br />

CVE-2011-1451 2 High<br />

CVE-2011-1453 2 High<br />

CVE-2011-1457 2 High<br />

CVE-2011-1462 2 High<br />

CVE-2011-1774 2 High<br />

CVE-2011-1797 2 High<br />

CVE-2011-2338 2 High<br />

CVE-2011-2339 2 High<br />

CVE-2011-2341 2 High<br />

CVE-2011-2351 2 High<br />

CVE-2011-2352 2 High<br />

CVE-2011-2354 2 High<br />

CVE-2011-2356 2 High<br />

CVE-2011-2359 2 High<br />

CVE-2011-2788 2 High<br />

CVE-2011-2790 2 High<br />

CVE-2011-2792 2 High<br />

CVE-2011-2797 2 High<br />

CVE-2011-2799 2 High<br />

CVE-2011-2805 2 High<br />

CVE-2011-2809 2 High<br />

CVE-2011-2811 2 High<br />

CVE-2011-2813 2 High<br />

CVE-2011-2814 2 High<br />

CVE-2011-2815 2 High<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 6

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-2816 2 High<br />

CVE-2011-2817 2 High<br />

CVE-2011-2818 2 High<br />

CVE-2011-2819 2 High<br />

CVE-2011-2820 2 High<br />

CVE-2011-2823 2 High<br />

CVE-2011-2825 3 High<br />

CVE-2011-2827 2 High<br />

CVE-2011-2831 2 High<br />

CVE-2011-2833 3 High<br />

CVE-2011-2846 3 High<br />

CVE-2011-2847 3 High<br />

CVE-2011-2854 3 High<br />

CVE-2011-2855 3 High<br />

CVE-2011-2857 3 High<br />

CVE-2011-2860 3 High<br />

CVE-2011-2866 3 High<br />

CVE-2011-2867 3 High<br />

CVE-2011-2868 3 High<br />

CVE-2011-2869 3 High<br />

CVE-2011-2870 3 High<br />

CVE-2011-2871 3 High<br />

CVE-2011-2872 3 High<br />

CVE-2011-2873 3 High<br />

CVE-2011-2877 3 High<br />

CVE-2011-3046 3 High<br />

CVE-2011-3056 3 High<br />

CVE-2011-3229 2 High<br />

CVE-2011-3230 2 High<br />

CVE-2011-3231 2 High<br />

CVE-2011-3232 2 High<br />

CVE-2011-3233 2 High<br />

CVE-2011-3234 2 High<br />

CVE-2011-3235 2 High<br />

CVE-2011-3236 2 High<br />

CVE-2011-3237 2 High<br />

CVE-2011-3238 2 High<br />

CVE-2011-3239 2 High<br />

CVE-2011-3241 2 High<br />

CVE-2011-3242 2 High<br />

CVE-2011-3243 2 High<br />

CVE-2011-3881 3 High<br />

CVE-2011-3885 3 High<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 7

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-3887 3 High<br />

CVE-2011-3888 3 High<br />

CVE-2011-3897 3 High<br />

CVE-2011-3908 3 High<br />

CVE-2011-3909 3 High<br />

CVE-2011-3928 3 High<br />

CVE-2012-0584 3 High<br />

CVE-2012-0585 3 High<br />

CVE-2012-0586 3 High<br />

CVE-2012-0587 3 High<br />

CVE-2012-0589 3 High<br />

CVE-2012-0590 3 High<br />

CVE-2012-0591 3 High<br />

CVE-2012-0592 3 High<br />

CVE-2012-0593 3 High<br />

CVE-2012-0594 3 High<br />

CVE-2012-0595 3 High<br />

CVE-2012-0596 3 High<br />

CVE-2012-0597 3 High<br />

CVE-2012-0598 3 High<br />

CVE-2012-0599 3 High<br />

CVE-2012-0600 3 High<br />

CVE-2012-0601 3 High<br />

CVE-2012-0602 3 High<br />

CVE-2012-0603 3 High<br />

CVE-2012-0604 3 High<br />

CVE-2012-0605 3 High<br />

CVE-2012-0606 3 High<br />

CVE-2012-0607 3 High<br />

CVE-2012-0608 3 High<br />

CVE-2012-0609 3 High<br />

CVE-2012-0610 3 High<br />

CVE-2012-0611 3 High<br />

CVE-2012-0612 3 High<br />

CVE-2012-0613 3 High<br />

CVE-2012-0614 3 High<br />

CVE-2012-0615 3 High<br />

CVE-2012-0616 3 High<br />

CVE-2012-0617 3 High<br />

CVE-2012-0618 3 High<br />

CVE-2012-0619 3 High<br />

CVE-2012-0620 3 High<br />

CVE-2012-0621 3 High<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 8

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2012-0623 3 High<br />

CVE-2012-0624 3 High<br />

CVE-2012-0625 3 High<br />

CVE-2012-0626 3 High<br />

CVE-2012-0627 3 High<br />

CVE-2012-0628 3 High<br />

CVE-2012-0629 3 High<br />

CVE-2012-0630 3 High<br />

CVE-2012-0631 3 High<br />

CVE-2012-0632 3 High<br />

CVE-2012-0633 3 High<br />

CVE-2012-0635 3 High<br />

CVE-2012-0636 3 High<br />

CVE-2012-0637 3 High<br />

CVE-2012-0638 3 High<br />

CVE-2012-0639 3 High<br />

CVE-2012-0640 3 High<br />

CVE-2012-0647 3 High<br />

CVE-2012-0648 3 High<br />

CVE-2012-0672 3 High<br />

CVE-2012-0676 3 High<br />

Vulnerabilities by Location - CVSS >= 4<br />

Asset Total<br />

HQ 2nd Floor 16<br />

Wireless-Guest 2<br />

Wireless-HQ 0<br />

HQ 3rd Floor 0<br />

HQ 1st Floor 0<br />

HQ 4th Floor 0<br />

Vulnerabilities by Subnet - CVSS >= 4<br />

IP Address Total<br />

10.200.0.0/24 16<br />

192.168.2.0/24 2<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 9

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

5 Day Vulnerability Trend by CVSS Ranges<br />

<strong>Apple</strong> <strong>Safari</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 10

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

<strong>Apple</strong> <strong>QuickTime</strong><br />

<strong>Apple</strong> <strong>QuickTime</strong> Host Detection<br />

IP Address NetBIOS Name DNS Name MAC Address<br />

10.100.0.20 ITSDEPT\MM1015 mm1015.itsdept.com 00:11:24:c8:69:51<br />

10.100.0.24 ITSDEPT\MM1018 mm1018.itsdept.com 00:11:24:c8:69:54<br />

10.100.0.27 ITSDEPT\MM1019 mm1019.itsdept.com 00:11:24:c8:70:01<br />

10.100.0.30 ITSDEPT\MM1023 mm1023.itsdept.com 00:11:24:c8:70:04<br />

10.100.0.40 ITSDEPT\MM1036 mm1036.itsdept.com 00:11:24:c8:70:10<br />

10.150.0.56 ITSDEPT\MM3062 mm3062.itsdept.com 00:11:24:c8:70:2b<br />

192.168.1.13<br />

192.168.2.72<br />

Vulnerability Summary - CVSS >= 4<br />

Plugin Total Severity Plugin Name Family<br />

6052 4 High<br />

6000 2 High<br />

CVE Summary<br />

<strong>QuickTime</strong> <<br />

7.7.1 Multiple<br />

Vulnerabilities<br />

<strong>QuickTime</strong> <<br />

7.7 Multiple<br />

Vulnerabilities<br />

Web Clients<br />

Web Clients<br />

CVE Total Severity<br />

CVE-2011-0186 2 High<br />

CVE-2011-0187 2 High<br />

CVE-2011-0209 2 High<br />

CVE-2011-0210 2 High<br />

CVE-2011-0211 2 High<br />

CVE-2011-0213 2 High<br />

CVE-2011-0245 2 High<br />

CVE-2011-0246 2 High<br />

CVE-2011-0247 2 High<br />

CVE-2011-0248 2 High<br />

CVE-2011-0249 2 High<br />

CVE-2011-0250 2 High<br />

CVE-2011-0251 2 High<br />

<strong>Apple</strong> <strong>QuickTime</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 11

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-0252 2 High<br />

CVE-2011-3218 4 High<br />

CVE-2011-3219 4 High<br />

CVE-2011-3220 4 High<br />

CVE-2011-3221 4 High<br />

CVE-2011-3222 4 High<br />

CVE-2011-3223 4 High<br />

CVE-2011-3228 4 High<br />

CVE-2011-3247 4 High<br />

CVE-2011-3248 4 High<br />

CVE-2011-3249 4 High<br />

CVE-2011-3250 4 High<br />

CVE-2011-3251 4 High<br />

Vulnerabilities by Location - CVSS >= 4<br />

Asset Total<br />

HQ 1st Floor 2<br />

HQ 3rd Floor 2<br />

Wireless-Guest 1<br />

Wireless-HQ 1<br />

HQ 4th Floor 0<br />

HQ 2nd Floor 0<br />

Vulnerabilities by Subnet - CVSS >= 4<br />

IP Address Total<br />

10.150.0.0/24 2<br />

10.100.0.0/24 2<br />

192.168.2.0/24 1<br />

192.168.1.0/24 1<br />

<strong>Apple</strong> <strong>QuickTime</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 12

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

5 Day Vulnerability Trend by CVSS Ranges<br />

<strong>Apple</strong> <strong>QuickTime</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 13

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Apple</strong> <strong>iTunes</strong> Host Detection<br />

IP Address NetBIOS Name DNS Name MAC Address<br />

10.100.0.20 ITSDEPT\MM1015 mm1015.itsdept.com 00:11:24:c8:69:51<br />

10.100.0.24 ITSDEPT\MM1018 mm1018.itsdept.com 00:11:24:c8:69:54<br />

10.100.0.27 ITSDEPT\MM1019 mm1019.itsdept.com 00:11:24:c8:70:01<br />

10.100.0.30 ITSDEPT\MM1023 mm1023.itsdept.com 00:11:24:c8:70:04<br />

10.200.0.15 ITSDEPT\DT1008 dt1008.itsdept.com 08:00:27:41:88:f2<br />

Vulnerability Summary - CVSS >= 4<br />

Plugin Total Severity Plugin Name Family<br />

6345 5 High<br />

6098 5 High<br />

6037 1 High<br />

5894 1 High<br />

5806 1 High<br />

CVE Summary<br />

<strong>iTunes</strong> <<br />

10.6 Multiple<br />

Vulnerabilities<br />

<strong>iTunes</strong> < 10.5.1<br />

Update Authenticity<br />

Verification<br />

Weakness<br />

<strong>iTunes</strong> <<br />

10.5 Multiple<br />

Vulnerabilities<br />

<strong>iTunes</strong> <<br />

10.2.2 Multiple<br />

Vulnerabilities<br />

<strong>iTunes</strong> <<br />

10.2 Multiple<br />

Vulnerabilities<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

CVE Total Severity<br />

CVE-2010-1205 1 High<br />

CVE-2010-1823 1 High<br />

CVE-2010-1824 1 High<br />

CVE-2010-2249 1 High<br />

CVE-2010-4008 1 High<br />

CVE-2010-4494 1 High<br />

CVE-2011-0111 1 High<br />

CVE-2011-0112 1 High<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 14

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-0113 1 High<br />

CVE-2011-0114 1 High<br />

CVE-2011-0115 1 High<br />

CVE-2011-0116 1 High<br />

CVE-2011-0117 1 High<br />

CVE-2011-0118 1 High<br />

CVE-2011-0119 1 High<br />

CVE-2011-0120 1 High<br />

CVE-2011-0121 1 High<br />

CVE-2011-0122 1 High<br />

CVE-2011-0123 1 High<br />

CVE-2011-0124 1 High<br />

CVE-2011-0125 1 High<br />

CVE-2011-0126 1 High<br />

CVE-2011-0127 1 High<br />

CVE-2011-0128 1 High<br />

CVE-2011-0129 1 High<br />

CVE-2011-0130 1 High<br />

CVE-2011-0131 1 High<br />

CVE-2011-0132 1 High<br />

CVE-2011-0133 1 High<br />

CVE-2011-0134 1 High<br />

CVE-2011-0135 1 High<br />

CVE-2011-0136 1 High<br />

CVE-2011-0137 1 High<br />

CVE-2011-0138 1 High<br />

CVE-2011-0139 1 High<br />

CVE-2011-0140 1 High<br />

CVE-2011-0141 1 High<br />

CVE-2011-0142 1 High<br />

CVE-2011-0143 1 High<br />

CVE-2011-0144 1 High<br />

CVE-2011-0145 1 High<br />

CVE-2011-0146 1 High<br />

CVE-2011-0147 1 High<br />

CVE-2011-0148 1 High<br />

CVE-2011-0149 1 High<br />

CVE-2011-0150 1 High<br />

CVE-2011-0151 1 High<br />

CVE-2011-0152 1 High<br />

CVE-2011-0153 1 High<br />

CVE-2011-0154 1 High<br />

CVE-2011-0155 1 High<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 15

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-0156 1 High<br />

CVE-2011-0164 2 High<br />

CVE-2011-0165 1 High<br />

CVE-2011-0168 1 High<br />

CVE-2011-0170 1 High<br />

CVE-2011-0191 1 High<br />

CVE-2011-0192 1 High<br />

CVE-2011-0200 1 High<br />

CVE-2011-0204 1 High<br />

CVE-2011-0215 1 High<br />

CVE-2011-0218 1 High<br />

CVE-2011-0221 1 High<br />

CVE-2011-0222 1 High<br />

CVE-2011-0223 1 High<br />

CVE-2011-0225 1 High<br />

CVE-2011-0232 1 High<br />

CVE-2011-0233 1 High<br />

CVE-2011-0234 1 High<br />

CVE-2011-0235 1 High<br />

CVE-2011-0237 1 High<br />

CVE-2011-0238 1 High<br />

CVE-2011-0240 1 High<br />

CVE-2011-0253 1 High<br />

CVE-2011-0254 1 High<br />

CVE-2011-0255 1 High<br />

CVE-2011-0259 1 High<br />

CVE-2011-0981 1 High<br />

CVE-2011-0983 1 High<br />

CVE-2011-1109 1 High<br />

CVE-2011-1114 1 High<br />

CVE-2011-1115 1 High<br />

CVE-2011-1117 1 High<br />

CVE-2011-1121 1 High<br />

CVE-2011-1188 1 High<br />

CVE-2011-1203 1 High<br />

CVE-2011-1204 1 High<br />

CVE-2011-1288 1 High<br />

CVE-2011-1290 1 High<br />

CVE-2011-1293 1 High<br />

CVE-2011-1296 1 High<br />

CVE-2011-1344 1 High<br />

CVE-2011-1440 1 High<br />

CVE-2011-1449 1 High<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 16

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2011-1451 1 High<br />

CVE-2011-1453 1 High<br />

CVE-2011-1457 1 High<br />

CVE-2011-1462 1 High<br />

CVE-2011-1774 1 High<br />

CVE-2011-1797 1 High<br />

CVE-2011-2338 1 High<br />

CVE-2011-2339 1 High<br />

CVE-2011-2341 1 High<br />

CVE-2011-2351 1 High<br />

CVE-2011-2352 1 High<br />

CVE-2011-2354 1 High<br />

CVE-2011-2356 1 High<br />

CVE-2011-2359 1 High<br />

CVE-2011-2788 1 High<br />

CVE-2011-2790 1 High<br />

CVE-2011-2792 1 High<br />

CVE-2011-2797 1 High<br />

CVE-2011-2799 1 High<br />

CVE-2011-2809 1 High<br />

CVE-2011-2811 1 High<br />

CVE-2011-2813 1 High<br />

CVE-2011-2814 1 High<br />

CVE-2011-2815 1 High<br />

CVE-2011-2816 1 High<br />

CVE-2011-2817 1 High<br />

CVE-2011-2818 1 High<br />

CVE-2011-2820 1 High<br />

CVE-2011-2823 1 High<br />

CVE-2011-2827 1 High<br />

CVE-2011-2831 1 High<br />

CVE-2011-3219 1 High<br />

CVE-2011-3232 1 High<br />

CVE-2011-3233 1 High<br />

CVE-2011-3234 1 High<br />

CVE-2011-3235 1 High<br />

CVE-2011-3236 1 High<br />

CVE-2011-3237 1 High<br />

CVE-2011-3238 1 High<br />

CVE-2011-3239 1 High<br />

CVE-2011-3241 1 High<br />

CVE-2011-3244 1 High<br />

CVE-2011-3252 1 High<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 17

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2012-0593 5 High<br />

CVE-2012-0594 5 High<br />

CVE-2012-0595 5 High<br />

CVE-2012-0596 5 High<br />

CVE-2012-0597 5 High<br />

CVE-2012-0598 5 High<br />

CVE-2012-0599 5 High<br />

CVE-2012-0600 5 High<br />

CVE-2012-0601 5 High<br />

CVE-2012-0602 5 High<br />

CVE-2012-0603 5 High<br />

CVE-2012-0604 5 High<br />

CVE-2012-0605 5 High<br />

CVE-2012-0606 5 High<br />

CVE-2012-0607 5 High<br />

CVE-2012-0608 5 High<br />

CVE-2012-0609 5 High<br />

CVE-2012-0610 5 High<br />

CVE-2012-0611 5 High<br />

CVE-2012-0612 5 High<br />

CVE-2012-0613 5 High<br />

CVE-2012-0614 5 High<br />

CVE-2012-0615 5 High<br />

CVE-2012-0616 5 High<br />

CVE-2012-0617 5 High<br />

CVE-2012-0618 5 High<br />

CVE-2012-0619 5 High<br />

CVE-2012-0620 5 High<br />

CVE-2012-0621 5 High<br />

CVE-2012-0622 5 High<br />

CVE-2012-0623 5 High<br />

CVE-2012-0624 5 High<br />

CVE-2012-0625 5 High<br />

CVE-2012-0626 5 High<br />

CVE-2012-0627 5 High<br />

CVE-2012-0628 5 High<br />

CVE-2012-0629 5 High<br />

CVE-2012-0630 5 High<br />

CVE-2012-0631 5 High<br />

CVE-2012-0632 5 High<br />

CVE-2012-0633 5 High<br />

CVE-2012-0634 5 High<br />

CVE-2012-0635 5 High<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 18

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

CVE Total Severity<br />

CVE-2012-0636 5 High<br />

CVE-2012-0637 5 High<br />

CVE-2012-0638 5 High<br />

CVE-2012-0639 5 High<br />

CVE-2012-0648 5 High<br />

Vulnerabilities by Location - CVSS >= 4<br />

Asset Total<br />

HQ 1st Floor 8<br />

HQ 2nd Floor 5<br />

Wireless-Guest 0<br />

Wireless-HQ 0<br />

HQ 3rd Floor 0<br />

HQ 4th Floor 0<br />

Vulnerabilities by Subnet - CVSS >= 4<br />

IP Address Total<br />

10.100.0.0/24 8<br />

10.200.0.0/24 5<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 19

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

5 Day Vulnerability Trend by CVSS Ranges<br />

<strong>Apple</strong> <strong>iTunes</strong><br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 20

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong><br />

<strong>iTunes</strong> Vulnerabilities with<br />

Known Exploits Summary<br />

5 Day Exploitable Vulnerability Trend - Medium, High & Critical Vulnerability<br />

Severity<br />

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> Vulnerabilities with Known Exploits Summary<br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 21

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

Hosts with <strong>Safari</strong> Exploitable Vulnerabilities - Medium, High & Critical Vulnerability Severity<br />

IP Address NetBIOS Name DNS Name MAC Address Med. High Crit.<br />

10.200.0.5 ITSDEPT\DT1004 dt1004.itsdept.com 08:00:27:41:88:b7 0 3 0<br />

10.200.0.18 ITSDEPT\DT1022 dt1022.itsdept.com 08:00:27:89:23:32 0 3 0<br />

Hosts with <strong>QuickTime</strong> Exploitable Vulnerabilities - Medium, High & Critical Vulnerability Severity<br />

IP Address NetBIOS Name DNS Name MAC Address Med. High Crit.<br />

10.100.0.40 ITSDEPT\MM1036 mm1036.itsdept.com 00:11:24:c8:70:10 0 1 0<br />

10.150.0.56 ITSDEPT\MM3062 mm3062.itsdept.com 00:11:24:c8:70:2b 0 1 0<br />

Hosts with <strong>iTunes</strong> Exploitable Vulnerabilities - Medium, High & Critical Vulnerability Severity<br />

IP Address NetBIOS Name DNS Name MAC Address Med. High Crit.<br />

10.200.0.15 ITSDEPT\DT1008 dt1008.itsdept.com 08:00:27:41:88:f2 0 1 0<br />

<strong>Safari</strong> Exploitable Vulnerability Summary - Medium, High <strong>and</strong> Critical Vulnerability Severity<br />

Plugin Total Severity Plugin Name Family<br />

6038 2 High<br />

5992 2 High<br />

5655 2 High<br />

<strong>Safari</strong> <<br />

5.1.1 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> < 5.1 Multiple<br />

Vulnerabilities<br />

<strong>Safari</strong> < 4.1.2 /<br />

5.0.2 Multiple<br />

Vulnerabilities<br />

Web Clients<br />

Web Clients<br />

Web Clients<br />

<strong>QuickTime</strong> Exploitable Vulnerability Summary - Medium, High <strong>and</strong> Critical Vulnerability Severity<br />

Plugin Total Severity Plugin Name Family<br />

6000 2 High<br />

<strong>QuickTime</strong> <<br />

7.7 Multiple<br />

Vulnerabilities<br />

Web Clients<br />

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> Vulnerabilities with Known Exploits Summary<br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 22

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> (<strong>PVS</strong>) <strong>Security</strong>Center 4<br />

TENABLE NETWORK SECURITY INC., COPYRIGHT © 2012<br />

<strong>iTunes</strong> Exploitable Vulnerability Summary - Medium, High <strong>and</strong> Critical Vulnerability Severity<br />

Plugin Total Severity Plugin Name Family<br />

6037 1 High<br />

<strong>iTunes</strong> <<br />

10.5 Multiple<br />

Vulnerabilities<br />

Web Clients<br />

<strong>Apple</strong> <strong>Safari</strong>, <strong>QuickTime</strong> <strong>and</strong> <strong>iTunes</strong> Vulnerabilities with Known Exploits Summary<br />

<strong>Tenable</strong> <strong>Network</strong> <strong>Security</strong> 23

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!