NSSecureTextField in AppKit in Apple Mac OS X 10.4.6 does not re-enable secure event input under certain circumstances, which could allow other applications in the window session to monitor input characters and keyboard events.
References
Link | Resource |
---|---|
http://lists.apple.com/archives/security-announce/2006/May/msg00003.html | Patch Vendor Advisory |
http://www.us-cert.gov/cas/techalerts/TA06-132A.html | US Government Resource |
http://secunia.com/advisories/20077 | Vendor Advisory |
http://www.securityfocus.com/bid/17951 | |
http://www.osvdb.org/25583 | |
http://www.vupen.com/english/advisories/2006/1779 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/26404 |
Configurations
Information
Published : 2006-05-12 14:02
Updated : 2017-07-19 18:30
NVD link : CVE-2006-1439
Mitre link : CVE-2006-1439
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
apple
- mac_os_x