{"vuid":"VU#869548","idnumber":"869548","name":"Apple Mac OS X IPSec mechanism fails to handle certain incoming security policies that match by port","keywords":["Apple","Mac OS X","IPSec mechanism","incoming security policies","port"],"overview":"Apple's Mac OS X IPSec implementation does not properly filter certain types of IP traffic.","clean_desc":"Apple Mac OS X contains an implementation of the IP Security Protocol (IPSec). A vulnerability in this implementation may allow a remote attacker to exchange traffic with a host that should not be reachable. For further details, please see Apple Security Update Article ID 61798.","impact":"A remote attacker may be able to bypass IPSec ACLs and reach a system that should not be reachable.","resolution":"Apply a patch.","workarounds":"","sysaffected":"","thanks":"The CERT/CC thanks Apple for providing Apple Security Update Article ID \n61798\n upon which this document is based.","author":"This document was written by Ian A Finlay.","public":["http://docs.info.apple.com/article.html?artnum=61798","http://www.ietf.org/html.charters/ipsec-charter.html","http://www.secunia.com/advisories/8798/","http://www.apple.com/macosx/"],"cveids":["CVE-2003-0242"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2003-05-19T15:57:28Z","publicdate":"2003-05-19T00:00:00Z","datefirstpublished":"2003-05-19T17:34:40Z","dateupdated":"2003-05-19T17:34:59Z","revision":7,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"15","cam_population":"8","cam_impact":"20","cam_easeofexploitation":"10","cam_attackeraccessrequired":"20","cam_scorecurrent":"18","cam_scorecurrentwidelyknown":"21","cam_scorecurrentwidelyknownexploited":"33","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":18.0,"vulnote":null}