CVE-2007-1191 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-1191

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

The Social Bookmarks (del.icio.us) plug-in 8F in Quicksilver writes usernames and passwords in plaintext to the /Library/Logs/Console/UID/Console.log file, which allows local users to obtain sensitive information by reading this file.

Affected Software

Name	Vendor	Start Version	End Version
Del.icio.us_module	Quicksilver	8f (including)	8f (including)

References

http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052722.html
http://osvdb.org/34486
http://securityreason.com/securityalert/2368
http://www.securityfocus.com/bid/22752
https://exchange.xforce.ibmcloud.com/vulnerabilities/32721
http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052722.html
http://osvdb.org/34486
http://securityreason.com/securityalert/2368
http://www.securityfocus.com/bid/22752
https://exchange.xforce.ibmcloud.com/vulnerabilities/32721