| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 7 Nov 2005 20:57:18 +0100 From: suresec advisories <advisories@...esec.org> To: bugtraq@...urityfocus.com, full-disclosure@...ts.grok.org.uk Subject: [ Suresec Advisories ] - Mac OS X (xnu) multiple information leaks. Suresec Security Advisory - #00008 07/11/2005 Mac OS X (xnu) - Multiple information leaks. Advisory: http://www.suresec.org/advisories/adv8.pdf Description: The Mac OS X kernel has several information leaks. In certain cases this might be sensitive information, such as portions of the file cache or terminal buffers. This information might be directly useful, or it might be leveraged to obtain elevated privileges in some way. For example, a terminal buffer might include a user-entered password. These vulnerabilities were discovered by Ilja van Sprundel. <fontfamily><param>Times</param><bigger><bigger>Suresec Security Advisory - #00008 07/11/2005 Mac OS X (xnu) - Multiple information leaks. Advisory: http://www.suresec.org/advisories/adv8.pdf Description: The Mac OS X kernel has several information leaks. In certain cases this might be sensitive information, such as portions of the file cache or terminal buffers. This information might be directly useful, or it might be leveraged to obtain elevated privileges in some way. For example, a terminal buffer might include a user-entered password. These vulnerabilities were discovered by Ilja van Sprundel.</bigger></bigger></fontfamily> _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists