Vulnerabilities

CVE-2002-0676

by Fred · 02/04/2003

SoftwareUpdate for MacOS 10.1.x does not use authentication when downloading a software update, which could allow remote attackers to execute arbitrary code by posing as the Apple update server via techniques such as DNS spoofing or cache poisoning, and supplying Trojan Horse updates.

Date published : 2003-04-02

http://www.securityfocus.com/bid/5176

Similar

Tags: Cybersecurity Alert