Lucene search

[email protected]CVE-2003-0242

HistoryJun 09, 2003 - 4:00 a.m.

CVE-2003-0242

2003-06-0904:00:00

[email protected]

web.nvd.nist.gov

cve-2003-0242

ipsec

mac os x

security policies

traffic

vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.7%

JSON

IPSec in Mac OS X before 10.2.6 does not properly handle certain incoming security policies that match by port, which could allow traffic that is not explicitly allowed by the policies.

Affected configurations

NVD

Node

applemac_os_xRange<10.2.6

CPENameOperatorVersion
apple:mac_os_xapple mac os xlt10.2.6

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	lt	10.2.6

References

docs.info.apple.com/article.html?artnum=61798

secunia.com/advisories/8798

securitytracker.com/id?1006796

www.kb.cert.org/vuls/id/869548

www.securityfocus.com/bid/7628

exchange.xforce.ibmcloud.com/vulnerabilities/12027

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.7%

JSON

Related for CVE-2003-0242

cvelist1 nvd1 cert1