CVE-2006-0386

FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which allows local users to access protected files when FileVault is enabled...

Design/Logic Flaw

FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which allows local users to access protected files when FileVault is enabled...

CVE-2006-0386

CVE-2006-0386 affects FileVault in Mac OS X 10.4.5 and earlier. The issue arises when creating a FileVault image: user directories are not properly mounted, allowing local users to access files that should be protected while FileVault is enabled. Documented impact is partial confidentiality; no e...

CVE-2006-0386

FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which allows local users to access protected files when FileVault is enabled...

CVE-2004-0622

Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login aka Loginwindow.app, Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory...

CVE-2004-0622

Apple Mac OS X 10.3.4, 10.4, 10.5 (and possibly other versions) do not properly clear memory for login (Loginwindow.app), Keychain, or FileVault passwords, which could allow a local attacker or someone with physical access to read sensitive information from memory. The affected components are the...

Mac OS X stores login/Keychain/FileVault passwords on disk

It seems that Mac OS X 10.3.4 tested doesn't bother clearing memory containing sensitive data, or using mlock to avoid swapping. A quick grep of the swapfiles will show up various morsels: rez: sudo strings -8 /var/vm/swapfile0 |grep -A 4 -i longname longname password user's password here /bin/zs...