Sign-up

ID

VAR-200412-1177


CVE

CVE-2004-1832


TITLE

Apple Mac OS X Server Management Service Unknown Remote Buffer Overflow Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200412-346

DESCRIPTION

Buffer overflow in the GUI admin service in Mac OS X Server 10.3 allows remote attackers to cause a denial of service (crash and restart) via a large amount of data to TCP port 660. This service has been reported to be exclusively associated with port 660. The reports indicate that when this service handles a request that is 2056 bytes long the service will crash and restart. This BID will be updated as further details regarding this issue are disclosed. Mac OS X is an operating system used on Mac machines, based on the BSD system. Remote attackers can use this vulnerability to send 2057 characters to perform remote buffer overflow attacks, and may execute arbitrary instructions on the system with process privileges. There are currently no detailed vulnerability details

Trust: 1.26

sources: NVD: CVE-2004-1832 // BID: 9914 // VULHUB: VHN-10261

AFFECTED PRODUCTS

vendor:applemodel:mac os x serverscope:eqversion:10.3

Trust: 1.6

vendor:applemodel:mac os serverscope:eqversion:x10.3.3

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.3.2

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.3.1

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.3

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.8

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.7

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.6

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.5

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.4

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.3

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.2

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2.1

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.2

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.1.5

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.1.4

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.1.3

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.1.2

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.1.1

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.1

Trust: 0.3

vendor:applemodel:mac os serverscope:eqversion:x10.0

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.3.3

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.2.8

Trust: 0.3

sources: BID: 9914 // CNNVD: CNNVD-200412-346 // NVD: CVE-2004-1832

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2004-1832
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200412-346
value: MEDIUM

Trust: 0.6

VULHUB: VHN-10261
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2004-1832
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-10261
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-10261 // CNNVD: CNNVD-200412-346 // NVD: CVE-2004-1832

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-1832

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200412-346

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 9914 // CNNVD: CNNVD-200412-346

EXTERNAL IDS

db:BIDid:9914

Trust: 2.0

db:NVDid:CVE-2004-1832

Trust: 1.7

db:CNNVDid:CNNVD-200412-346

Trust: 0.7

db:XFid:15533

Trust: 0.6

db:BUGTRAQid:20040318 MAC OSX- ADMIN SERVICE BUFFER OVERFLOW

Trust: 0.6

db:BUGTRAQid:20040319 RE: MAC OSX- ADMIN SERVICE BUFFER OVERFLOW

Trust: 0.6

db:NSFOCUSid:6202

Trust: 0.6

db:VULHUBid:VHN-10261

Trust: 0.1

sources: VULHUB: VHN-10261 // BID: 9914 // CNNVD: CNNVD-200412-346 // NVD: CVE-2004-1832

REFERENCES

url:http://www.securityfocus.com/bid/9914

Trust: 1.7

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/15533

Trust: 1.1

url:http://marc.info/?l=bugtraq&m=107965605008575&w=2

Trust: 1.0

url:http://marc.info/?l=bugtraq&m=107971225327629&w=2

Trust: 1.0

url:http://xforce.iss.net/xforce/xfdb/15533

Trust: 0.6

url:http://marc.theaimsgroup.com/?l=bugtraq&m=107971225327629&w=2

Trust: 0.6

url:http://marc.theaimsgroup.com/?l=bugtraq&m=107965605008575&w=2

Trust: 0.6

url:http://www.nsfocus.net/vulndb/6202

Trust: 0.6

url:http://www.apple.com/macosx/

Trust: 0.3

url:/archive/1/357915

Trust: 0.3

url:/archive/1/357957

Trust: 0.3

url:/archive/1/357985

Trust: 0.3

url:http://marc.info/?l=bugtraq&m=107965605008575&w=2

Trust: 0.1

url:http://marc.info/?l=bugtraq&m=107971225327629&w=2

Trust: 0.1

sources: VULHUB: VHN-10261 // BID: 9914 // CNNVD: CNNVD-200412-346 // NVD: CVE-2004-1832

CREDITS

Jack C ("crEp")※ programming_rocks1@hotmail.com

Trust: 0.6

sources: CNNVD: CNNVD-200412-346

SOURCES

db:VULHUBid:VHN-10261
db:BIDid:9914
db:CNNVDid:CNNVD-200412-346
db:NVDid:CVE-2004-1832

LAST UPDATE DATE

2024-08-14T15:04:46.118000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-10261date:2017-07-11T00:00:00
db:BIDid:9914date:2004-03-19T00:00:00
db:CNNVDid:CNNVD-200412-346date:2005-10-20T00:00:00
db:NVDid:CVE-2004-1832date:2017-07-11T01:31:23.327

SOURCES RELEASE DATE

db:VULHUBid:VHN-10261date:2004-12-31T00:00:00
db:BIDid:9914date:2004-03-19T00:00:00
db:CNNVDid:CNNVD-200412-346date:2004-03-19T00:00:00
db:NVDid:CVE-2004-1832date:2004-12-31T05:00:00