exploitDog

CVE-2003-0378

Опубликовано: 16 июн. 2003

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The Kerberos login authentication feature in Mac OS X, when used with an LDAPv3 server and LDAP bind authentication, may send cleartext passwords to the LDAP server when the AuthenticationAuthority attribute is not set.

Ссылки

http://docs.info.apple.com/article.html?artnum=107579
http://www.kb.cert.org/vuls/id/467828
Exploit
Patch
Third Party Advisory
US Government Resource
http://docs.info.apple.com/article.html?artnum=107579
http://www.kb.cert.org/vuls/id/467828
Exploit
Patch
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.2 (включая)

EPSS

Процентиль: 65%

0.00497

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-78fx-p2gm-vm87

github

почти 4 года назад

The Kerberos login authentication feature in Mac OS X, when used with an LDAPv3 server and LDAP bind authentication, may send cleartext passwords to the LDAP server when the AuthenticationAuthority attribute is not set.

EPSS

Процентиль: 65%

0.00497

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other