mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 01:02:25 +00:00
178 lines
6.1 KiB
JSON
178 lines
6.1 KiB
JSON
{
|
|
"id": "CVE-2003-1009",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2004-03-29T05:00:00.000",
|
|
"lastModified": "2017-07-11T01:29:39.777",
|
|
"vulnStatus": "Modified",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Directory Services in Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 and Apple Mac OS X Server 10.2 through 10.3.2 accepts authentication server information from unknown LDAP or NetInfo sources as provided by a malicious DHCP server, which allows remote attackers to gain privileges."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Los servicios de directorio en Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 y Apple Mac OS X Server 10.2 a 10.3.2 aceptan informaci\u00f3n de servidor de autenticaci\u00f3n de fuentes LDAP o NetInfo proporcionadas por un servidor DHCP malicioso, lo que permite a atacantes remotos ganar privilegios."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "COMPLETE",
|
|
"integrityImpact": "COMPLETE",
|
|
"availabilityImpact": "COMPLETE",
|
|
"baseScore": 10.0
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 10.0,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": true,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-Other"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x:10.0.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "77CC671C-6D89-4279-86F7-DDE1D4D9A0CA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x:10.0.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8E4B77F6-E71C-45ED-96CC-7872AD2FCBF8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "AB461678-560D-436E-A3AE-9E1E16DB0412"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x:10.3.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "33E698C1-C313-40E6-BAF9-7C8F9CF02484"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "00AE033B-5F16-4262-A397-02D7450189B8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2E831F3E-A980-47AF-BD05-2DB1A14689B4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "36991737-904F-4B26-AEE2-7B30411279E8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F7EE6036-1A18-43F1-8A92-7DF39E1516E3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "620ECFC8-293D-4C2B-9698-67185BB6E2EF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C1F14A45-BDDB-4C12-9370-D5241975A928"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "46BC34D4-A1E8-4E01-982D-EAF03A0EB886"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "35932546-B614-47C0-98E6-8EF1EFE06725"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.2.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "38F17066-C090-4DD7-A1AC-D8FF70D268CE"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "1E997653-C744-4F1F-9948-47579AB3BED3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.3.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "DF5A416A-F198-4B9C-8221-D36CC8A7FE5C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:apple:mac_os_x_server:10.3.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "384C130F-D1A9-4482-AF20-FC81933473A3"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://docs.info.apple.com/article.html?artnum=32478",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://docs.info.apple.com/article.html?artnum=61798",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Patch",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://www.carrel.org/dhcp-vuln.html",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/9110",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Exploit",
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/13874",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |