Sign-up

ID

VAR-200207-0061


CVE

CVE-2002-0676


TITLE

MacOS X SoftwareUpdate Any package installation vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200207-064

DESCRIPTION

SoftwareUpdate for MacOS 10.1.x does not use authentication when downloading a software update, which could allow remote attackers to execute arbitrary code by posing as the Apple update server via techniques such as DNS spoofing or cache poisoning, and supplying Trojan Horse updates. A vulnerability has been reported for MacOS X where an attacker may use SoftwareUpdate to install malicious software on the vulnerable system. SoftwareUpdate uses HTTP, without any authentication, to obtain updates from Apple. Any updated packages are installed on the system as the root user. In order to exploit this vulnerability, the attacker must control the machine located at swquery.apple.com, from the perspective of the vulnerable client. It may be possible to create this condition through some known techniques, including DNS cache poisoning and DNS spoofing

Trust: 1.26

sources: NVD: CVE-2002-0676 // BID: 5176 // VULHUB: VHN-5067

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.1

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.1.5

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.1.1

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.1.3

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.1.2

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.1.4

Trust: 1.6

vendor:applemodel:mac osscope:eqversion:x10.1.5

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.1.4

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.1.3

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.1.2

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.1.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.1

Trust: 0.3

sources: BID: 5176 // CNNVD: CNNVD-200207-064 // NVD: CVE-2002-0676

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2002-0676
value: HIGH

Trust: 1.0

CNNVD: CNNVD-200207-064
value: HIGH

Trust: 0.6

VULHUB: VHN-5067
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2002-0676
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-5067
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-5067 // CNNVD: CNNVD-200207-064 // NVD: CVE-2002-0676

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-0676

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200207-064

TYPE

Design Error

Trust: 0.9

sources: BID: 5176 // CNNVD: CNNVD-200207-064

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-5067

EXTERNAL IDS
db:BIDid:5176
Trust: 2.0
db:OSVDBid:5137
Trust: 1.7
db:NVDid:CVE-2002-0676
Trust: 1.7
db:CNNVDid:CNNVD-200207-064
Trust: 0.7
db:XFid:9502
Trust: 0.6
db:EXPLOIT-DBid:21596
Trust: 0.1
db:SEEBUGid:SSVID-75421
Trust: 0.1
db:VULHUBid:VHN-5067
Trust: 0.1
sources:
            
            
            VULHUB: VHN-5067 // 
            
            
            
            BID: 5176 // 
            
            
            
            CNNVD: CNNVD-200207-064 // 
            
            
            
            NVD: CVE-2002-0676

REFERENCES
url:http://www.cunap.com/~hardingr/projects/osx/exploit.html
Trust: 2.0
url:http://www.securityfocus.com/bid/5176
Trust: 1.7
url:http://www.osvdb.org/5137
Trust: 1.7
url:http://www.iss.net/security_center/static/9502.php
Trust: 1.7
url:http://docs.info.apple.com/article.html?artnum=75304
Trust: 0.3
url:http://www.apple.com/macosx/
Trust: 0.3
url:http://depot.info.apple.com/security7-18/
Trust: 0.3
url: - 
Trust: 0.1
sources:
            
            
            VULHUB: VHN-5067 // 
            
            
            
            BID: 5176 // 
            
            
            
            CNNVD: CNNVD-200207-064 // 
            
            
            
            NVD: CVE-2002-0676

CREDITS
Discovery credited to Russell Harding <hardingr@ucsub.colorado.edu>.
Trust: 0.9
sources:
            
            
            BID: 5176 // 
            
            
            
            CNNVD: CNNVD-200207-064

SOURCES
db:VULHUBid:VHN-5067
db:BIDid:5176
db:CNNVDid:CNNVD-200207-064
db:NVDid:CVE-2002-0676

LAST UPDATE DATE
2024-08-14T15:41:01.441000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-5067date:2008-09-05T00:00:00
db:BIDid:5176date:2002-07-08T00:00:00
db:CNNVDid:CNNVD-200207-064date:2007-03-02T00:00:00
db:NVDid:CVE-2002-0676date:2008-09-05T20:28:39.210

SOURCES RELEASE DATE
db:VULHUBid:VHN-5067date:2002-07-11T00:00:00
db:BIDid:5176date:2002-07-08T00:00:00
db:CNNVDid:CNNVD-200207-064date:2002-07-11T00:00:00
db:NVDid:CVE-2002-0676date:2002-07-11T04:00:00