Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1412

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-1412
Last Modified 10 Sep 2008 03:10:28
Published 17 Nov 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1412

Summary

nidump on MacOS X before 10.3 allows local users to read the encrypted passwords from the password file by specifying passwd as a command line argument.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.4.9


References

MISC - http://www.securemac.com/macosxnidump.php

MISC - http://www.securiteam.com/securityreviews/5QP032A4UU.html

SECTRACK - 1001946

BUGTRAQ - 20020915 nidump on OS X

CONFIRM - http://lists.apple.com/mhonarc/security-announce/msg00038.html

BUGTRAQ - 20010903 Re: Possible Issue with Netinfo and Mac OS X


Last Updated: 27 May 2016 10:36:40