2.1
CVE-2009-0013
- EPSS 0.32%
- Veröffentlicht 13.02.2009 00:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:04
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
dscl in DS Tools in Apple Mac OS X 10.4.11 and 10.5.6 requires that passwords must be provided as command line arguments, which allows local users to gain privileges by listing process information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Apple ≫ macOS X Server Version10.4.11
Apple ≫ macOS X Server Version10.5.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.237 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
http://secunia.com/advisories/33937
http://support.apple.com/kb/HT3438
http://www.vupen.com/english/advisories/2009/0422
http://www.securityfocus.com/bid/33759
http://securitytracker.com/alerts/2009/Feb/1021722.html
http://www.securityfocus.com/bid/33815
https://exchange.xforce.ibmcloud.com/vulnerabilities/48717