Vulnerability Name: | CVE-2005-2510 (CCN-23555) | ||||||||
Assigned: | 2005-08-17 | ||||||||
Published: | 2005-08-17 | ||||||||
Updated: | 2008-09-05 | ||||||||
Summary: | The Server Admin tool in servermgr_ipfilter for Mac OS X 10.4 to 10.4.2, when using multiple subnets and Address Groups, does not always properly write firewall rules to the Active Rules when certain conditions occur, which could result in firewall policies that are less restrictive than intended by the administrator. | ||||||||
CVSS v3 Severity: | 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
CVSS v2 Severity: | 4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||
Vulnerability Type: | CWE-Other | ||||||||
Vulnerability Consequences: | Bypass Security | ||||||||
References: | Source: MITRE Type: CNA CVE-2005-2510 Source: CCN Type: AppleCare Knowledge Base Document 302163 About Security Update 2005-007 Source: APPLE Type: Patch APPLE-SA-2005-08-17 Source: APPLE Type: Patch APPLE-SA-2005-08-15 Source: CCN Type: SECTRACK ID: 1014708 Apple Mac OS X Bug in servermgr_ipfilter May Prevent Certain Firewall Rules From Being Enforced Source: SECTRACK Type: UNKNOWN 1014708 Source: CCN Type: OSVDB ID: 18790 Apple Mac OS X Server servermgr_ipfilter Admin Tool Rule Write Failure Source: XF Type: UNKNOWN macos-serveradmin-weak-security(23555) | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: ![]() | ||||||||
BACK |