Lucene search

[email protected]CVE-2012-0652

HistoryMay 11, 2012 - 3:49 a.m.

CVE-2012-0652

2012-05-1103:49:58

CWE-200

[email protected]

web.nvd.nist.gov

apple

mac os x

vulnerability

cve-2012-0652

nvd

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Login Window in Apple Mac OS X 10.7.3, when Legacy File Vault or networked home directories are enabled, does not properly restrict what is written to the system log for network logins, which allows local users to obtain sensitive information by reading the log.

Affected configurations

NVD

Node

applemac_os_xMatch10.7.3

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.7.3

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.7.3

References

lists.apple.com/archives/security-announce/2012/May/msg00001.html

lists.apple.com/archives/security-announce/2012/Sep/msg00004.html

support.apple.com/kb/HT5281

support.apple.com/kb/HT5501

www.securityfocus.com/bid/53445

www.securityfocus.com/bid/53457

www.securitytracker.com/id?1027024

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2012-0652

prion1 cvelist1 nessus3 seebug1 nvd1 securityvulns3 openvas2