CVE Vulnerabilities

CVE-2004-0622

Published: Dec 06, 2004 | Modified: Oct 19, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login (aka Loginwindow.app), Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory.

Affected Software

Name Vendor Start Version End Version
Mac_os_x Apple 10.3.4 (including) 10.3.4 (including)
Mac_os_x Apple 10.4 (including) 10.4 (including)
Mac_os_x Apple 10.5 (including) 10.5 (including)

References