Lucene search
HistoryJun 05, 2013 - 2:39 p.m.
CVE-2013-0982
CVSS2
1.7
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:S/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
12.6%
The Private Browsing feature in CFNetwork in Apple Mac OS X before 10.8.4 does not prevent storage of permanent cookies upon exit from Safari, which might allow physically proximate attackers to bypass cookie-based authentication by leveraging an unattended workstation.
Affected configurations
Node
applemac_os_xMatch10.7.0
ORapplemac_os_xMatch10.7.1
ORapplemac_os_xMatch10.7.2
ORapplemac_os_xMatch10.7.3
ORapplemac_os_xMatch10.7.4
ORapplemac_os_xMatch10.7.5
ORapplemac_os_x_serverMatch10.7.0
ORapplemac_os_x_serverMatch10.7.1
ORapplemac_os_x_serverMatch10.7.2
ORapplemac_os_x_serverMatch10.7.3
ORapplemac_os_x_serverMatch10.7.4
ORapplemac_os_x_serverMatch10.7.5
Node
applemac_os_xRange≤10.8.3
ORapplemac_os_xMatch10.8.0
ORapplemac_os_xMatch10.8.1
ORapplemac_os_xMatch10.8.2
Related
cve
cve
CVE-2013-0982
2022-10-03 16:15:03
prion
prion
Authentication flaw
2013-06-05 14:39:00
cvelist
cvelist
CVE-2013-0982
2022-10-03 16:15:03
nessus
nessus
Mac OS X 10.8 < 10.8.4 Multiple Vulnerabilities (Security Update 2013-002)
2013-06-05 00:00:00
Mac OS X 10.8 < 10.8.4 Multiple Vulnerabilities (Security Update 2013-002)
2013-06-05 00:00:00
Mac OS X 10.8.x < 10.8.4 Multiple Vulnerabilities
2013-06-05 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2013-06-17 00:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities - 02 (Jan 2014)
2014-01-20 00:00:00
CVSS2
1.7
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:S/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
12.6%
Related for NVD:CVE-2013-0982