Details of VAR-200311-0050

ID

VAR-200311-0050

CVE

CVE-2003-0878

TITLE

Mac OS X slpd daemon Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200311-023

DESCRIPTION

slpd daemon in Mac OS X before 10.3 allows local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2003-0875. The slpd daemon in Mac OS X prior to 10.3 is vulnerable

Trust: 1.26

sources: NVD: CVE-2003-0878 // BID: 87722 // VULHUB: VHN-7703

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	lte	version:	10.3	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.3	Trust: 0.6
vendor:	apple	model:	mac os	scope:	eq	version:	x10.3	Trust: 0.3

sources: BID: 87722 // CNNVD: CNNVD-200311-023 // NVD: CVE-2003-0878

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-0878
value:	LOW
Trust: 1.0
CNNVD:	CNNVD-200311-023
value:	LOW
Trust: 0.6
VULHUB:	VHN-7703
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2003-0878
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-7703
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-7703 // CNNVD: CNNVD-200311-023 // NVD: CVE-2003-0878

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-0878

THREAT TYPE

local

Trust: 0.9

sources: BID: 87722 // CNNVD: CNNVD-200311-023

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200311-023

EXTERNAL IDS

db:	NVD	id:	CVE-2003-0878	Trust: 2.0
db:	CNNVD	id:	CNNVD-200311-023	Trust: 0.7
db:	BID	id:	87722	Trust: 0.4
db:	VULHUB	id:	VHN-7703	Trust: 0.1

sources: VULHUB: VHN-7703 // BID: 87722 // CNNVD: CNNVD-200311-023 // NVD: CVE-2003-0878

REFERENCES

url:	http://docs.info.apple.com/article.html?artnum=61798	Trust: 2.0
url:	http://lists.apple.com/mhonarc/security-announce/msg00038.html	Trust: 2.0

sources: VULHUB: VHN-7703 // BID: 87722 // CNNVD: CNNVD-200311-023 // NVD: CVE-2003-0878

CREDITS

Unknown

Trust: 0.3

sources: BID: 87722

SOURCES

db:	VULHUB	id:	VHN-7703
db:	BID	id:	87722
db:	CNNVD	id:	CNNVD-200311-023
db:	NVD	id:	CVE-2003-0878

LAST UPDATE DATE

2024-08-14T14:53:50.567000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-7703	date:	2008-09-05T00:00:00
db:	BID	id:	87722	date:	2003-11-03T00:00:00
db:	CNNVD	id:	CNNVD-200311-023	date:	2005-10-31T00:00:00
db:	NVD	id:	CVE-2003-0878	date:	2008-09-05T20:35:29.920

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-7703	date:	2003-11-03T00:00:00
db:	BID	id:	87722	date:	2003-11-03T00:00:00
db:	CNNVD	id:	CNNVD-200311-023	date:	2003-11-03T00:00:00
db:	NVD	id:	CVE-2003-0878	date:	2003-11-03T05:00:00