Vulnerabilities > CVE-2004-0165 - Unspecified vulnerability in Apple mac OS X and mac OS X Server
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Format string vulnerability in Point-to-Point Protocol (PPP) daemon (pppd) 2.4.0 for Mac OS X 10.3.2 and earlier allows remote attackers to read arbitrary pppd process data, including PAP or CHAP authentication credentials, to gain privileges.
Vulnerable Configurations
References
- http://lists.apple.com/archives/security-announce/2004/Feb/msg00000.html
- http://lists.apple.com/archives/security-announce/2004/Feb/msg00000.html
- http://www.atstake.com/research/advisories/2004/a022304-1.txt
- http://www.atstake.com/research/advisories/2004/a022304-1.txt
- http://www.kb.cert.org/vuls/id/841742
- http://www.kb.cert.org/vuls/id/841742
- http://www.osvdb.org/6822
- http://www.osvdb.org/6822
- http://www.securityfocus.com/bid/9730
- http://www.securityfocus.com/bid/9730
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15297
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15297