CVE-2004-1081

Currently unrated

Key Information:

Vendor: Apple
Status: Quicktime Streaming Server; Darwin Streaming Server
Vendor: CVE Published:; 2 December 2004

Summary

The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session.

References

http://www.securityfocus.com/bid/11802

vdb-entryx_refsource_BID

http://secunia.com/advisories/13362/

third-party-advisoryx_refsource_SECUNIA

http://lists.apple.com/archives/security-announce/2004/De...

vendor-advisoryx_refsource_APPLE

Timeline

Vulnerability published
Dec 2, 2004
Vulnerability Reserved
Nov 30, 2004