CVE-2003-0378

Published: Jun 16, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The Kerberos login authentication feature in Mac OS X, when used with an LDAPv3 server and LDAP bind authentication, may send cleartext passwords to the LDAP server when the AuthenticationAuthority attribute is not set.

Affected (1)

Products: Apple: Mac Os X

Apple

1 product

Mac Os X

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Up to 10.2

References (4)

http://docs.info.apple.com/article.html?artnum=107579

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/467828

Source: cve@mitre.org

ExploitPatchThird Party AdvisoryUS Government Resource

http://docs.info.apple.com/article.html?artnum=107579

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/467828

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchThird Party AdvisoryUS Government Resource

Timeline

No history available yet.