Apple Mac OS X Apple Filing Protocol Client Multiple Vulnerabilities
BID:9763
Info
Apple Mac OS X Apple Filing Protocol Client Multiple Vulnerabilities
| Bugtraq ID: | 9763 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 27 2004 12:00AM |
| Updated: | Feb 27 2004 12:00AM |
| Credit: | The disclosure of these issues has been credited to Chris Adams <[email protected]>. |
| Vulnerable: |
Apple Mac OS X 10.3.2 Apple Mac OS X 10.3.1 Apple Mac OS X 10.3 Apple Mac OS X 10.2.8 Apple Mac OS X 10.2.7 Apple Mac OS X 10.2.6 Apple Mac OS X 10.2.5 Apple Mac OS X 10.2.4 Apple Mac OS X 10.2.3 Apple Mac OS X 10.2.2 Apple Mac OS X 10.2.1 Apple Mac OS X 10.2 Apple Mac OS X 10.1.5 Apple Mac OS X 10.1.4 Apple Mac OS X 10.1.3 Apple Mac OS X 10.1.2 Apple Mac OS X 10.1.1 Apple Mac OS X 10.1 Apple Mac OS X 10.1 Apple Mac OS X 10.0.4 Apple Mac OS X 10.0.3 Apple Mac OS X 10.0.2 Apple Mac OS X 10.0.1 Apple Mac OS X 10.0 3 Apple Mac OS X 10.0 |
| Not Vulnerable: | |
Discussion
Apple Mac OS X Apple Filing Protocol Client Multiple Vulnerabilities
Multiple issues have been identified in Apple Mac OS X Apple Filing Protocol (AFP) client that may allow an attacker to carry out man-in-the-middle attacks and steal confidential information.
The first issue arises due to the fact that the AFP client does not issue a warning to a user if an SSH session cannot be established with a server. The client is reported to proceed with an unencrypted session via other means, while giving the impression that SSH tunneling is employed, leading to a false sense of security.
The AFP client is also reported to be prone to a weakness that may allow an attacker to carry out man-in-the-middle attacks. This issue presents itself because the client does not differentiate between various encrypted authentication mechanisms
Another weakness in the AFP client may also allow an attacker carry out man-in-the-middle attacks. This issue exists because the client does not verify a server's host key before a secure connection is established.
Multiple issues have been identified in Apple Mac OS X Apple Filing Protocol (AFP) client that may allow an attacker to carry out man-in-the-middle attacks and steal confidential information.
The first issue arises due to the fact that the AFP client does not issue a warning to a user if an SSH session cannot be established with a server. The client is reported to proceed with an unencrypted session via other means, while giving the impression that SSH tunneling is employed, leading to a false sense of security.
The AFP client is also reported to be prone to a weakness that may allow an attacker to carry out man-in-the-middle attacks. This issue presents itself because the client does not differentiate between various encrypted authentication mechanisms
Another weakness in the AFP client may also allow an attacker carry out man-in-the-middle attacks. This issue exists because the client does not verify a server's host key before a secure connection is established.
Exploit / POC
Apple Mac OS X Apple Filing Protocol Client Multiple Vulnerabilities
These issues do not require exploit code.
These issues do not require exploit code.
Solution / Fix
Apple Mac OS X Apple Filing Protocol Client Multiple Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Apple Mac OS X Apple Filing Protocol Client Multiple Vulnerabilities
References:
References:
- Mac OS X Homepage (Apple)
- Multiple issues with Mac OS X AFP client (Chris Adams