What is the severity of CVE-2003-1009?

CVE-2003-1009 has a high severity level as it allows remote attackers to gain privileges.

How do I fix CVE-2003-1009?

To fix CVE-2003-1009, you should update your Apple Mac OS X or Mac OS X Server to the latest available version that addresses this vulnerability.

What systems are affected by CVE-2003-1009?

CVE-2003-1009 affects Apple Mac OS X versions 10.0.2, 10.0.3, 10.2.8, 10.3.2 and various versions of Apple Mac OS X Server.

What type of attack does CVE-2003-1009 expose systems to?

CVE-2003-1009 exposes systems to potential privilege escalation attacks through malicious DHCP server configurations.

Can CVE-2003-1009 be exploited remotely?

Yes, CVE-2003-1009 can be exploited remotely by attackers using spoofed LDAP or NetInfo sources.

Vulnerability/
CVE-2003-1009

critical

CWE

NVD-CWE-Other

10/3/2004

8/8/2024

CVE-2003-1009

First published: Wed Mar 10 2004(Updated: )

Directory Services in Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 and Apple Mac OS X Server 10.2 through 10.3.2 accepts authentication server information from unknown LDAP or NetInfo sources as provided by a malicious DHCP server, which allows remote attackers to gain privileges.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apple Mac OS X Server	=10.3.2
Apple Mac OS X Server	=10.2.2
macOS Yosemite	=10.0.2
macOS Yosemite	=10.2.8
Apple Mac OS X Server	=10.2.4
Apple Mac OS X Server	=10.2.7
Apple Mac OS X Server	=10.2.3
macOS Yosemite	=10.0.3
macOS Yosemite	=10.3.2
Apple Mac OS X Server	=10.2.5
Apple Mac OS X Server	=10.2.6
Apple Mac OS X Server	=10.2.1
Apple Mac OS X Server	=10.3
Apple Mac OS X Server	=10.3.1
Apple Mac OS X Server	=10.2
Apple Mac OS X Server	=10.2.8

Remedy

http://docs.info.apple.com/article.html?artnum=61798

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2003-1009?
CVE-2003-1009 has a high severity level as it allows remote attackers to gain privileges.
How do I fix CVE-2003-1009?
To fix CVE-2003-1009, you should update your Apple Mac OS X or Mac OS X Server to the latest available version that addresses this vulnerability.
What systems are affected by CVE-2003-1009?
CVE-2003-1009 affects Apple Mac OS X versions 10.0.2, 10.0.3, 10.2.8, 10.3.2 and various versions of Apple Mac OS X Server.
What type of attack does CVE-2003-1009 expose systems to?
CVE-2003-1009 exposes systems to potential privilege escalation attacks through malicious DHCP server configurations.
Can CVE-2003-1009 be exploited remotely?
Yes, CVE-2003-1009 can be exploited remotely by attackers using spoofed LDAP or NetInfo sources.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/references
agent/severity
agent/last-modified-date
agent/weakness
agent/remedy
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/apple
canonical/apple mac os x server
version/apple mac os x server/10.3.2
version/apple mac os x server/10.2.2
canonical/macos yosemite
version/macos yosemite/10.0.2
version/macos yosemite/10.2.8
version/apple mac os x server/10.2.4
version/apple mac os x server/10.2.7
version/apple mac os x server/10.2.3
version/macos yosemite/10.0.3
version/macos yosemite/10.3.2
version/apple mac os x server/10.2.5
version/apple mac os x server/10.2.6
version/apple mac os x server/10.2.1
version/apple mac os x server/10.3
version/apple mac os x server/10.3.1
version/apple mac os x server/10.2
version/apple mac os x server/10.2.8