7.2
CVE-2005-1387
- EPSS 0.34%
- Veröffentlicht 03.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:12:57
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCocktail 3.5.4 and possibly earlier in Mac OS X passes the administrative password on the command line to sudo in cleartext, which allows local users to gain sensitive information by running listing processes.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Kristofer Szymanski ≫ Cocktail Version3.5.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.34% | 0.257 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://marc.info/?l=bugtraq&m=111480898530362&w=2
http://secunia.com/advisories/15201
http://www.osvdb.org/16046
http://www.securityfocus.com/bid/13449