CVE-2007-1191

CVE-2007-1191

EPSS 0.3%

The Social Bookmarks (del.icio.us) plug-in 8F in Quicksilver writes usernames and passwords in plaintext to the /Library/Logs/Console/UID/Console.log file, which allows local users to obtain sensitive information by reading this file.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052722.html http://osvdb.org/34486 http://securityreason.com/securityalert/2368 https://exchange.xforce.ibmcloud.com/vulnerabilities/32721 http://www.securityfocus.com/bid/22752