Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0622

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2004-0622
Last Modified 28 Dec 2010 12:00:00
Published 06 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0622

Summary

Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login (aka Loginwindow.app), Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.3.4

  • Apple Mac Os X 10.4

  • Apple Mac Os X 10.5


References

XF - macos-memory-view-passwords(16557)

BUGTRAQ - 20080229 Re: Loginwindow.app and Mac OS X

BUGTRAQ - 20080228 Loginwindow.app and Mac OS X

BUGTRAQ - 20040625 Mac OS X stores login/Keychain/FileVault passwords on disk

MISC - http://citp.princeton.edu/pub/coldboot.pdf


Last Updated: 27 May 2016 10:38:40