Sign-up

ID

VAR-200311-0087


CVE

CVE-2001-1412


TITLE

Apple Mac OS X nidump Password File Disclosure Vulnerability

Trust: 0.9

sources: BID: 2953 // CNNVD: CNNVD-200311-062

DESCRIPTION

nidump on MacOS X before 10.3 allows local users to read the encrypted passwords from the password file by specifying passwd as a command line argument. A vulnerability exists in all versions of Apple MacOS X. It has been found to contain a vulnerability which could allow disclosure of passwords and other sensitive system information. nidump is a Mac OS X system data extraction utility which can be used to read the contents of the NetInfo database. This utility's default file permissions leave this utility available to any local user at the command line. However, hosts with a network nidomain may be vulnerable to remote exploitation of this issue. This is possible if remote tags are used for nidump. It should also be noted that both portmap and netinfobind must be listening on the target host for this issue to be exploited. The output of the nidump command can reveal the list of usernames and passwords in clear text. An attacker could then use this list to log in as a user with administrative priveleges

Trust: 1.26

sources: NVD: CVE-2001-1412 // BID: 2953 // VULHUB: VHN-4216

AFFECTED PRODUCTS

vendor:applemodel:mac os xscope:eqversion:10.4.9

Trust: 1.6

vendor:applemodel:mac osscope:eqversion:x10.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0.4

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0.3

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0.2

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0.1

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.0

Trust: 0.3

sources: BID: 2953 // CNNVD: CNNVD-200311-062 // NVD: CVE-2001-1412

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2001-1412
value: LOW

Trust: 1.0

CNNVD: CNNVD-200311-062
value: LOW

Trust: 0.6

VULHUB: VHN-4216
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2001-1412
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-4216
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-4216 // CNNVD: CNNVD-200311-062 // NVD: CVE-2001-1412

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2001-1412

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-200311-062

TYPE

Design Error

Trust: 0.9

sources: BID: 2953 // CNNVD: CNNVD-200311-062

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-4216

EXTERNAL IDS
db:NVDid:CVE-2001-1412
Trust: 2.0
db:SECTRACKid:1001946
Trust: 1.7
db:CNNVDid:CNNVD-200311-062
Trust: 0.7
db:BUGTRAQid:20010903 RE: POSSIBLE ISSUE WITH NETINFO AND MAC OS X
Trust: 0.6
db:BUGTRAQid:20020915 NIDUMP ON OS X
Trust: 0.6
db:BIDid:2953
Trust: 0.4
db:SEEBUGid:SSVID-74832
Trust: 0.1
db:EXPLOIT-DBid:20984
Trust: 0.1
db:VULHUBid:VHN-4216
Trust: 0.1
sources:
            
            
            VULHUB: VHN-4216 // 
            
            
            
            BID: 2953 // 
            
            
            
            CNNVD: CNNVD-200311-062 // 
            
            
            
            NVD: CVE-2001-1412

REFERENCES
url:http://lists.insecure.org/lists/bugtraq/2002/sep/0128.html
Trust: 1.7
url:http://lists.apple.com/mhonarc/security-announce/msg00038.html
Trust: 1.7
url:http://www.securemac.com/macosxnidump.php
Trust: 1.7
url:http://www.securiteam.com/securityreviews/5qp032a4uu.html
Trust: 1.7
url:http://securitytracker.com/id?1001946
Trust: 1.7
url:http://marc.info/?l=bugtraq&m=99953038722104&w=2
Trust: 1.0
url:http://marc.theaimsgroup.com/?l=bugtraq&m=99953038722104&w=2
Trust: 0.6
url:http://marc.info/?l=bugtraq&m=99953038722104&w=2
Trust: 0.1
sources:
            
            
            VULHUB: VHN-4216 // 
            
            
            
            CNNVD: CNNVD-200311-062 // 
            
            
            
            NVD: CVE-2001-1412

CREDITS
Reported to bugtraq by Steven Kreuzer <skreuzer@condenast.com> on June 29, 2001.
Trust: 0.9
sources:
            
            
            BID: 2953 // 
            
            
            
            CNNVD: CNNVD-200311-062

SOURCES
db:VULHUBid:VHN-4216
db:BIDid:2953
db:CNNVDid:CNNVD-200311-062
db:NVDid:CVE-2001-1412

LAST UPDATE DATE
2024-08-14T15:25:48.151000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-4216date:2016-10-18T00:00:00
db:BIDid:2953date:2009-07-11T06:56:00
db:CNNVDid:CNNVD-200311-062date:2005-10-20T00:00:00
db:NVDid:CVE-2001-1412date:2016-10-18T02:15:19.007

SOURCES RELEASE DATE
db:VULHUBid:VHN-4216date:2003-11-17T00:00:00
db:BIDid:2953date:2001-06-26T00:00:00
db:CNNVDid:CNNVD-200311-062date:2003-11-17T00:00:00
db:NVDid:CVE-2001-1412date:2003-11-17T05:00:00