SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#869548

Apple Mac OS X IPSec mechanism fails to handle certain incoming security policies that match by port

Overview

Apple's Mac OS X IPSec implementation does not properly filter certain types of IP traffic.

I. Description

Apple Mac OS X contains an implementation of the IP Security Protocol (IPSec). A vulnerability in this implementation may allow a remote attacker to exchange traffic with a host that should not be reachable. For further details, please see Apple Security Update Article ID 61798.

II. Impact

A remote attacker may be able to bypass IPSec ACLs and reach a system that should not be reachable.

III. Solution

Apply a patch.

Systems Affected
VendorStatusDate NotifiedDate Updated
Apple Computer Inc.Vulnerable19-May-2003

References

http://docs.info.apple.com/article.html?artnum=61798
http://www.ietf.org/html.charters/ipsec-charter.html
http://www.secunia.com/advisories/8798/
http://www.apple.com/macosx/

Credit

The CERT/CC thanks Apple for providing Apple Security Update Article ID 61798 upon which this document is based.

This document was written by Ian A Finlay.

Other Information

Date Public:2003-05-19
Date First Published:2003-05-19
Date Last Updated:2003-05-19
CERT Advisory: 
CVE-ID(s):CAN-2003-0242
NVD-ID(s):CAN-2003-0242
US-CERT Technical Alerts: 
Metric:18.00
Document Revision:4

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2003 Carnegie Mellon University
Disclaimers and copyright information
Get a PDF Reader