Apple Mac OS X nidump密码文件泄露漏洞

漏洞信息详情

Apple Mac OS X nidump密码文件泄露漏洞

• CNNVD编号：CNNVD-200311-062
• 危害等级： 低危
  
  
• CVE编号：
  CVE-2001-1412
  
• 漏洞类型：
  
  
  设计错误
  
• 发布时间：
  
  2003-11-17
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  apple
• 漏洞来源：
  Reported to bugtra…

MacOS X 10.3之前版本的nidump存在漏洞。本地用户通过指定passwd作为命令行参数从密码文件中读取加密的密码。

Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com .
@securityfocus.com>

来源: www.securemac.com
链接:http://www.securemac.com/macosxnidump.php

来源: www.securiteam.com
链接:http://www.securiteam.com/securityreviews/5QP032A4UU.html

来源: SECTRACK
名称: 1001946
链接:http://securitytracker.com/id?1001946

来源: BUGTRAQ
名称: 20020915 nidump on OS X
链接:http://lists.insecure.org/lists/bugtraq/2002/Sep/0128.html

来源: lists.apple.com
链接:http://lists.apple.com/mhonarc/security-announce/msg00038.html

来源: BUGTRAQ
名称: 20010903 Re: Possible Issue with Netinfo and Mac OS X
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=99953038722104&w=2