Vulnerability Description
AppKit for Mac OS X 10.3.9 and 10.4.2 allows attackers with physical access to create local accounts by forcing a particular error to occur at the login window.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | 10.3.9 |
| Apple | Mac Os X Server | 10.3.9 |
References
- http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.htmlPatch
- http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
- http://securitytracker.com/id?1014696
- http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.htmlPatch
- http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
- http://securitytracker.com/id?1014696
FAQ
What is CVE-2005-2503?
CVE-2005-2503 is a vulnerability with a CVSS score of 4.6 (MEDIUM). AppKit for Mac OS X 10.3.9 and 10.4.2 allows attackers with physical access to create local accounts by forcing a particular error to occur at the login window.
How severe is CVE-2005-2503?
CVE-2005-2503 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2503?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Apple Mac Os X Server.