Computer Security
[EN] securityvulns.ru no-pyccku


Quicksilver Social Bookmark information leak
Published:28.02.2007
Source:
SecurityVulns ID:7315
Type:local
Threat Level:
5/10
Description:User login and pasword are logged to Console.log file.
Affected:QuickSilver : Social Bookmark 8
CVE:CVE-2007-1191 (The Social Bookmarks (del.icio.us) plug-in 8F in Quicksilver writes usernames and passwords in plaintext to the /Library/Logs/Console/UID/Console.log file, which allows local users to obtain sensitive information by reading this file.)
Original documentdocumentmax perience, [Full-disclosure] Quicksilver Social Bookmark plugin v.8F: password in clear text (28.02.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod