Details of VAR-200403-0084

ID

VAR-200403-0084

CVE

CVE-2003-1010

TITLE

Apple MacOS X fs_usage Unknown local privilege elevation vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200403-120

DESCRIPTION

Unknown vulnerability in fs_usage in Mac OS X 10.2.8 and 10.3.2 and Mac OS X Server 10.2.8 and 10.3.2 allows local users to gain privileges via unknown attack vectors. Due to a lack of details further information cannot be provided at the moment. This BID will be updated as more information becomes available. No detailed vulnerability details are currently available

Trust: 1.26

sources: NVD: CVE-2003-1010 // BID: 9265 // VULHUB: VHN-7835

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	eq	version:	10.3.2	Trust: 0.6
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.8	Trust: 0.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.3.2	Trust: 0.6
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.8	Trust: 0.6
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.3.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.8	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.3.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.8	Trust: 0.3

sources: BID: 9265 // CNNVD: CNNVD-200403-120

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-1010
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200403-120
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-7835
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2003-1010
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-7835
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-7835 // CNNVD: CNNVD-200403-120 // NVD: CVE-2003-1010

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-1010

THREAT TYPE

local

Trust: 0.9

sources: BID: 9265 // CNNVD: CNNVD-200403-120

TYPE

access verification error

Trust: 0.6

sources: CNNVD: CNNVD-200403-120

EXTERNAL IDS

db:	NVD	id:	CVE-2003-1010	Trust: 2.0
db:	BID	id:	9265	Trust: 2.0
db:	CNNVD	id:	CNNVD-200403-120	Trust: 0.7
db:	XF	id:	14193	Trust: 0.6
db:	VULHUB	id:	VHN-7835	Trust: 0.1

sources: VULHUB: VHN-7835 // BID: 9265 // CNNVD: CNNVD-200403-120 // NVD: CVE-2003-1010

REFERENCES

url:	http://www.securityfocus.com/bid/9265	Trust: 1.7
url:	http://docs.info.apple.com/article.html?artnum=61798	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/14193	Trust: 1.1
url:	http://xforce.iss.net/xforce/xfdb/14193	Trust: 0.6

sources: VULHUB: VHN-7835 // CNNVD: CNNVD-200403-120 // NVD: CVE-2003-1010

CREDITS

The disclosure of this issue has been credited to Dave G. of @stake.

Trust: 0.3

sources: BID: 9265

SOURCES

db:	VULHUB	id:	VHN-7835
db:	BID	id:	9265
db:	CNNVD	id:	CNNVD-200403-120
db:	NVD	id:	CVE-2003-1010

LAST UPDATE DATE

2024-08-14T14:48:11.523000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-7835	date:	2017-07-11T00:00:00
db:	BID	id:	9265	date:	2009-07-12T00:56:00
db:	CNNVD	id:	CNNVD-200403-120	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2003-1010	date:	2017-07-11T01:29:39.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-7835	date:	2004-03-29T00:00:00
db:	BID	id:	9265	date:	2003-12-20T00:00:00
db:	CNNVD	id:	CNNVD-200403-120	date:	2003-12-20T00:00:00
db:	NVD	id:	CVE-2003-1010	date:	2004-03-29T05:00:00