CVE Vulnerabilities

CVE-2003-1009

Published: Mar 29, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Directory Services in Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 and Apple Mac OS X Server 10.2 through 10.3.2 accepts authentication server information from unknown LDAP or NetInfo sources as provided by a malicious DHCP server, which allows remote attackers to gain privileges.

Affected Software

Name Vendor Start Version End Version
Mac_os_x_server Apple 10.3.2 10.3.2
Mac_os_x_server Apple 10.2.2 10.2.2
Mac_os_x Apple 10.0.2 10.0.2
Mac_os_x Apple 10.2.8 10.2.8
Mac_os_x_server Apple 10.2.4 10.2.4
Mac_os_x_server Apple 10.2.7 10.2.7
Mac_os_x_server Apple 10.2.3 10.2.3
Mac_os_x Apple 10.0.3 10.0.3
Mac_os_x Apple 10.3.2 10.3.2
Mac_os_x_server Apple 10.2.5 10.2.5
Mac_os_x_server Apple 10.2.6 10.2.6
Mac_os_x_server Apple 10.2.1 10.2.1
Mac_os_x_server Apple 10.3 10.3
Mac_os_x_server Apple 10.3.1 10.3.1
Mac_os_x_server Apple 10.2 10.2
Mac_os_x_server Apple 10.2.8 10.2.8

References