← Back

CVE-2008-1033

nvd nist
Published: Jun 2, 2008Modified: Apr 23, 2026

JSON object

Loading...
2.1
Vector
AV:N/AC:H/Au:S/C:P/I:N/A:N
Exploitability: 3.9 / Impact: 2.9
Source: NVD

Description

The scheduler in CUPS in Apple Mac OS X 10.5 before 10.5.3, when debug logging is enabled and a printer requires a password, allows attackers to obtain sensitive information (credentials) by reading the log data, related to "authentication environment variables."

Affected (1)

Products: Apple: Cups
Apple
1 product
Cups
Configuration A
1 vulnerable · 4 platform
Vulnerable SoftwareAffected Versions
Cups
All versions
Running on/withPlatform Versions
Apple
Mac Os X
All versions
Apple
Mac Os X Server
Version 10.5.1
Apple
Mac Os X Server
Version 10.5.2
Apple
Mac Os X Server
Version 10.5

Related CWEs

CWE-264
CWE-264

References (16)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
US Government Resource
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.