CVE-2004-1089

3 documents3 sources

Severity

4.6MEDIUM

EPSS

0.1%

top 77.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Darwin Streaming Server Apple MAC OS X Apple MAC OS X Server +1 more

Timeline

PublishedDec 2

Latest updateApr 29

Description

Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages4 packages

▶NVDapple/mac_os_x_server16 versions+15

▶NVDapple/darwin_streaming_server4.1.3, 5.0.1+1

▶NVDapple/quicktime_streaming_server4.1.1

▶NVDapple/mac_os_x16 versions+15

Patches

Patch: lists.apple.com ↗Patch: secunia.com ↗Patch: www.ciac.org ↗

🔴Vulnerability Details

GHSA

GHSA-hmcq-h7vg-2x6c: Unknown vulnerability in Apple Mac OS X 10↗2022-04-29

▶

CVEList

CVE-2004-1089: Unknown vulnerability in Apple Mac OS X 10↗2005-04-14

▶