CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
20.8%
The Server Admin tool in servermgr_ipfilter for Mac OS X 10.4 to 10.4.2, when using multiple subnets and Address Groups, does not always properly write firewall rules to the Active Rules when certain conditions occur, which could result in firewall policies that are less restrictive than intended by the administrator.
Vendor | Product | Version | CPE |
---|---|---|---|
apple | mac_os_x_server | 10.4 | cpe:2.3:o:apple:mac_os_x_server:10.4:*:*:*:*:*:*:* |
apple | mac_os_x_server | 10.4.1 | cpe:2.3:o:apple:mac_os_x_server:10.4.1:*:*:*:*:*:*:* |
apple | mac_os_x_server | 10.4.2 | cpe:2.3:o:apple:mac_os_x_server:10.4.2:*:*:*:*:*:*:* |