exploitDog

CVE-2010-0522

Опубликовано: 30 мар. 2010

Источник: nvd

CVSS2: 9

EPSS Низкий

Описание

Server Admin in Apple Mac OS X Server 10.5.8 does not properly determine the privileges of users who had former membership in the admin group, which allows remote authenticated users to leverage this former membership to obtain a server connection via screen sharing.

Ссылки

http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
Vendor Advisory
http://support.apple.com/kb/HT4077
Patch
Vendor Advisory
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
Vendor Advisory
http://support.apple.com/kb/HT4077
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00421

Низкий

9 Critical

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-x5jr-g6pf-rrxm

github

почти 4 года назад

Server Admin in Apple Mac OS X Server 10.5.8 does not properly determine the privileges of users who had former membership in the admin group, which allows remote authenticated users to leverage this former membership to obtain a server connection via screen sharing.

EPSS

Процентиль: 61%

0.00421

Низкий

9 Critical

CVSS2

Дефекты

CWE-264