Details of VAR-200403-0081

ID

VAR-200403-0081

CVE

CVE-2003-1007

TITLE

Apple MacOS X AppleFileServer Unknown security vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200403-129

DESCRIPTION

AppleFileServer (AFS) in Apple Mac OS X 10.2.8 and 10.3.2 does not properly handle certain malformed requests, with unknown impact. It has been reported that AppleFileServer may be prone to an unspecified security vulnerability due to improper handling of malformed requests. Due to the fact that no details were supplied by the vendor, the implications of exploitation are not currently known. Apple MacOS X AppleFileServer is an Apple file service program

Trust: 1.35

sources: NVD: CVE-2003-1007 // BID: 9264 // VULHUB: VHN-7832 // VULMON: CVE-2003-1007

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	eq	version:	10.3.2	Trust: 1.6
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.8	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.3.2	Trust: 1.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.8	Trust: 1.6
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.3.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.8	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.3.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.8	Trust: 0.3

sources: BID: 9264 // CNNVD: CNNVD-200403-129 // NVD: CVE-2003-1007

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-1007
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200403-129
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-7832
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2003-1007
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2003-1007
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.1
VULHUB:	VHN-7832
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-7832 // VULMON: CVE-2003-1007 // CNNVD: CNNVD-200403-129 // NVD: CVE-2003-1007

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-1007

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200403-129

TYPE

Unknown

Trust: 0.9

sources: BID: 9264 // CNNVD: CNNVD-200403-129

EXTERNAL IDS

db:	NVD	id:	CVE-2003-1007	Trust: 2.1
db:	BID	id:	9264	Trust: 2.1
db:	SECTRACK	id:	1008532	Trust: 1.7
db:	CNNVD	id:	CNNVD-200403-129	Trust: 0.7
db:	XF	id:	14051	Trust: 0.6
db:	VULHUB	id:	VHN-7832	Trust: 0.1
db:	VULMON	id:	CVE-2003-1007	Trust: 0.1

sources: VULHUB: VHN-7832 // VULMON: CVE-2003-1007 // BID: 9264 // CNNVD: CNNVD-200403-129 // NVD: CVE-2003-1007

REFERENCES

url:	http://www.securityfocus.com/bid/9264	Trust: 1.9
url:	http://docs.info.apple.com/article.html?artnum=61798	Trust: 1.8
url:	http://securitytracker.com/id?1008532	Trust: 1.8
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/14051	Trust: 1.2
url:	http://xforce.iss.net/xforce/xfdb/14051	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	http://tools.cisco.com/security/center/viewalert.x?alertid=7106	Trust: 0.1

sources: VULHUB: VHN-7832 // VULMON: CVE-2003-1007 // CNNVD: CNNVD-200403-129 // NVD: CVE-2003-1007

CREDITS

The disclosure of this issue has been credited to the vendor.

Trust: 0.3

sources: BID: 9264

SOURCES

db:	VULHUB	id:	VHN-7832
db:	VULMON	id:	CVE-2003-1007
db:	BID	id:	9264
db:	CNNVD	id:	CNNVD-200403-129
db:	NVD	id:	CVE-2003-1007

LAST UPDATE DATE

2024-08-14T14:35:52.834000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-7832	date:	2017-07-11T00:00:00
db:	VULMON	id:	CVE-2003-1007	date:	2017-07-11T00:00:00
db:	BID	id:	9264	date:	2009-07-12T00:56:00
db:	CNNVD	id:	CNNVD-200403-129	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2003-1007	date:	2017-07-11T01:29:39.680

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-7832	date:	2004-03-29T00:00:00
db:	VULMON	id:	CVE-2003-1007	date:	2004-03-29T00:00:00
db:	BID	id:	9264	date:	2003-12-20T00:00:00
db:	CNNVD	id:	CNNVD-200403-129	date:	2003-12-20T00:00:00
db:	NVD	id:	CVE-2003-1007	date:	2004-03-29T05:00:00