CVE-2003-0601 — Apple MAC OS X Server vulnerability

2 documents2 sources

Severity

7.5HIGHNVD

EPSS

0.7%

top 27.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Server

Timeline

PublishedMar 29

Latest updateApr 29

Description

Workgroup Manager in Apple Mac OS X Server 10.2 through 10.2.6 does not disable a password for a new account before it is saved for the first time, which allows remote attackers to gain unauthorized access via the new account before it is saved.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDapple/mac_os_x_server7 versions+6

Patches

Patch: docs.info.apple.com ↗Patch: www.securityfocus.com ↗Patch: docs.info.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-4w8h-2hjm-3r6x: Workgroup Manager in Apple Mac OS X Server 10↗2022-04-29

▶