Vulnerabilities > CVE-2007-1191 - Unspecified vulnerability in Quicksilver Del.Icio.Us Module 8F
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The Social Bookmarks (del.icio.us) plug-in 8F in Quicksilver writes usernames and passwords in plaintext to the /Library/Logs/Console/UID/Console.log file, which allows local users to obtain sensitive information by reading this file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052722.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052722.html
- http://osvdb.org/34486
- http://osvdb.org/34486
- http://securityreason.com/securityalert/2368
- http://securityreason.com/securityalert/2368
- http://www.securityfocus.com/bid/22752
- http://www.securityfocus.com/bid/22752
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32721
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32721