CVE-2012-0651

Published: May 11, 2012Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The directory server in Directory Service in Apple Mac OS X 10.6.8 allows remote attackers to obtain sensitive information from process memory via a crafted message.

Affected (2)

Products: Apple: Mac Os X, Mac Os X Server

Apple

2 products

Mac Os X

Mac Os X Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Version 10.6.8
Apple Mac Os X Server	Version 10.6.8

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

http://lists.apple.com/archives/security-announce/2012/May/msg00001.html

Source: product-security@apple.com

Vendor Advisory

http://support.apple.com/kb/HT5281

Source: product-security@apple.com

Vendor Advisory

http://www.securityfocus.com/bid/53445

Source: product-security@apple.com

http://www.securityfocus.com/bid/53458

Source: product-security@apple.com

http://lists.apple.com/archives/security-announce/2012/May/msg00001.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://support.apple.com/kb/HT5281

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/53445

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/53458

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.