Vulnerabilities > CVE-2011-3435 - Credentials Management vulnerability in Apple mac OS X and mac OS X Server
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Open Directory in Apple Mac OS X 10.7 before 10.7.2 allows local users to read the password data of arbitrary users via unspecified vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 4 |
Common Weakness Enumeration (CWE)
Nessus
| NASL family | MacOS X Local Security Checks |
| NASL id | MACOSX_10_7_2.NASL |
| description | The remote host is running a version of Mac OS X 10.7.x that is prior to 10.7.2. This version contains numerous security-related fixes for the following components : - Apache - Application Firewall - ATS - BIND - Certificate Trust Policy - CFNetwork - CoreMedia - CoreProcesses - CoreStorage - File Systems - iChat Server - Kernel - libsecurity - Open Directory - PHP - python - QuickTime - SMB File Server - X11 |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 56480 |
| published | 2011-10-13 |
| reporter | This script is Copyright (C) 2011-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/56480 |
| title | Mac OS X 10.7.x < 10.7.2 Multiple Vulnerabilities |
References
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
- http://osvdb.org/76369
- http://support.apple.com/kb/HT5002
- http://www.securityfocus.com/bid/50085
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70584
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/70584
- http://www.securityfocus.com/bid/50085
- http://support.apple.com/kb/HT5002
- http://osvdb.org/76369