CVE-2005-2520

Опубликовано: 19 авг. 2005

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The password assistant in Mac OS X 10.4 to 10.4.2, when used to create multiple accounts from the same process, does not reset the suggested password list when the assistant is displayed, which allows attackers to view recently used passwords.

Ссылки

http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
Patch
Vendor Advisory
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
Patch
Vendor Advisory
http://securitytracker.com/id?1014707
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
Patch
Vendor Advisory
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
Patch
Vendor Advisory
http://securitytracker.com/id?1014707

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00078

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-v8qh-9rgj-4vwv

github

почти 4 года назад