SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information

Report a Vulnerability

 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#869548

Apple Mac OS X IPSec mechanism fails to handle certain incoming security policies that match by port

Overview

Apple's Mac OS X IPSec implementation does not properly filter certain types of IP traffic.

I. Description

Apple Mac OS X contains an implementation of the IP Security Protocol (IPSec). A vulnerability in this implementation may allow a remote attacker to exchange traffic with a host that should not be reachable. For further details, please see Apple Security Update Article ID 61798.

II. Impact

A remote attacker may be able to bypass IPSec ACLs and reach a system that should not be reachable.

III. Solution

Apply a patch.

Systems Affected
VendorStatusDate NotifiedDate Updated
Apple Computer Inc.Vulnerable19-May-2003

References

http://docs.info.apple.com/article.html?artnum=61798
http://www.ietf.org/html.charters/ipsec-charter.html
http://www.secunia.com/advisories/8798/
http://www.apple.com/macosx/

Credit

The CERT/CC thanks Apple for providing Apple Security Update Article ID 61798 upon which this document is based.

This document was written by Ian A Finlay.

Other Information

Date Public:2003-05-19
Date First Published:2003-05-19
Date Last Updated:2003-05-19
CERT Advisory: 
CVE-ID(s):CAN-2003-0242
NVD-ID(s):CAN-2003-0242
US-CERT Technical Alerts: 
Severity Metric:18.00
Document Revision:4

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2003 Carnegie Mellon University
Disclaimers and copyright information
Get a PDF Reader