ID CVE-2009-0015
Summary Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10.5.6 allows local users to obtain sensitive information (filesystem activities and directory names) via unknown vectors related to "credential management."
References
Vulnerable Configurations
  • cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x_server:10.5.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x_server:10.5.6:*:*:*:*:*:*:*
CVSS
Base: 4.9 (as of 08-03-2011 - 03:17)
Impact:
Exploitability:
CWE CWE-255
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE NONE NONE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:N/A:N
refmap via4
apple APPLE-SA-2009-02-12
bid
  • 33759
  • 33821
confirm http://support.apple.com/kb/HT3438
secunia 33937
vupen ADV-2009-0422
Last major update 08-03-2011 - 03:17
Published 13-02-2009 - 00:30
Last modified 08-03-2011 - 03:17
Back to Top