Vulnerability Description
IPSec in Mac OS X before 10.2.6 does not properly handle certain incoming security policies that match by port, which could allow traffic that is not explicitly allowed by the policies.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | < 10.2.6 |
References
- http://docs.info.apple.com/article.html?artnum=61798Broken Link
- http://secunia.com/advisories/8798Third Party Advisory
- http://securitytracker.com/id?1006796Third Party AdvisoryVDB Entry
- http://www.kb.cert.org/vuls/id/869548Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/7628Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12027Third Party AdvisoryVDB Entry
- http://docs.info.apple.com/article.html?artnum=61798Broken Link
- http://secunia.com/advisories/8798Third Party Advisory
- http://securitytracker.com/id?1006796Third Party AdvisoryVDB Entry
- http://www.kb.cert.org/vuls/id/869548Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/7628Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12027Third Party AdvisoryVDB Entry
FAQ
What is CVE-2003-0242?
CVE-2003-0242 is a vulnerability with a CVSS score of 7.5 (HIGH). IPSec in Mac OS X before 10.2.6 does not properly handle certain incoming security policies that match by port, which could allow traffic that is not explicitly allowed by the policies.
How severe is CVE-2003-0242?
CVE-2003-0242 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0242?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X.