NVD

Id
49454  
Name
CVE-2009-2192  
Description
MobileMe in Apple Mac OS X 10.5 before 10.5.8 does not properly delete credentials upon signout from the preference pane, which makes it easier for attackers to hijack a MobileMe session via unspecified vectors, related to a "logic issue."  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-08-06  
Modified Date
2009-08-19  
Seq
2009-2192  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
250136 49454 CVE-2009-2192 APPLE-SA-2009-08-05-1  View
250137 49454 CVE-2009-2192 http://support.apple.com/kb/HT3757  View
250138 49454 CVE-2009-2192 35954  View
250139 49454 CVE-2009-2192 TA09-218A  View
250140 49454 CVE-2009-2192 ADV-2009-2172  View
250141 49454 CVE-2009-2192 macosx-mobileme-session-hijack(52432)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40997 JVNDB-2009-002003 Apple Mac OS の MobileMe におけるセッションをハイジャックされる脆弱性 Apple Mac OS の MobileMe には、サインアウト時に資格情報が適切に削除されないため、MobileMe セッションをハイジャックされる脆弱性が存在します。 CVE-2009-2192 39623 CVE-2009-2192 49454 7.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002003.html 2009-08-05 2009-09-15 View