exploitDog

CVE-2008-2330

Опубликовано: 16 сент. 2008

Источник: nvd

CVSS2: 4.9

EPSS Низкий

Описание

slapconfig in Directory Services in Apple Mac OS X 10.5 through 10.5.4 allows local users to select a readable output file into which the server password will be written by an OpenLDAP system administrator, related to the mkfifo function, aka an "insecure file operation issue."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.5.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.5.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.5.4:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00073

Низкий

4.9 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-5rh2-3rgq-px65

github

почти 4 года назад

slapconfig in Directory Services in Apple Mac OS X 10.5 through 10.5.4 allows local users to select a readable output file into which the server password will be written by an OpenLDAP system administrator, related to the mkfifo function, aka an "insecure file operation issue."

EPSS

Процентиль: 22%

0.00073

Низкий

4.9 Medium

CVSS2

Дефекты

CWE-200