CVE-2003-0601 Information

Description

Workgroup Manager in Apple Mac OS X Server 10.2 through 10.2.6 does not disable a password for a new account before it is saved for the first time which allows remote attackers to gain unauthorized access via the new account before it is saved.

Reference

http://docs.info.apple.com/article.html?artnum=25631 http://www.securityfocus.com/bid/8266 https://exchange.xforce.ibmcloud.com/vulnerabilities/12728