Lucene search

[email protected]CVE-2003-0882

HistoryNov 03, 2003 - 5:00 a.m.

CVE-2003-0882

2003-11-0305:00:00

[email protected]

web.nvd.nist.gov

cve

mac os x

security vulnerability

tcp timestamp

remote attack

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

64.5%

JSON

Mac OS X before 10.3 initializes the TCP timestamp with a constant number, which allows remote attackers to determine the system’s uptime via the ID field in a TCP packet.

Affected configurations

NVD

Node

applemac_os_xRange≤10.3

CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.3

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	le	10.3

References

docs.info.apple.com/article.html?artnum=61798

lists.apple.com/mhonarc/security-announce/msg00038.html

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

64.5%

JSON

Related for CVE-2003-0882

nvd1 cvelist1