Vulnerability Description
Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X Server | 10.2.6 |
References
- http://secunia.com/advisories/9025/PatchVendor Advisory
- http://www.auscert.org.au/render.html?it=3165PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/JPLA-5NTL8EPatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/7894PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12342
- http://secunia.com/advisories/9025/PatchVendor Advisory
- http://www.auscert.org.au/render.html?it=3165PatchVendor Advisory
- http://www.kb.cert.org/vuls/id/JPLA-5NTL8EPatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/7894PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12342
FAQ
What is CVE-2003-0420?
CVE-2003-0420 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool.
How severe is CVE-2003-0420?
CVE-2003-0420 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0420?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X Server.