Vulnerability Description
Workgroup Manager in Apple Mac OS X Server 10.2 through 10.2.6 does not disable a password for a new account before it is saved for the first time, which allows remote attackers to gain unauthorized access via the new account before it is saved.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X Server | 10.2 |
References
- http://docs.info.apple.com/article.html?artnum=25631PatchVendor Advisory
- http://www.securityfocus.com/bid/8266PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12728
- http://docs.info.apple.com/article.html?artnum=25631PatchVendor Advisory
- http://www.securityfocus.com/bid/8266PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12728
FAQ
What is CVE-2003-0601?
CVE-2003-0601 is a vulnerability with a CVSS score of 7.5 (HIGH). Workgroup Manager in Apple Mac OS X Server 10.2 through 10.2.6 does not disable a password for a new account before it is saved for the first time, which allows remote attackers to gain unauthorized a...
How severe is CVE-2003-0601?
CVE-2003-0601 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0601?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X Server.