Lucene search
HistoryOct 14, 2011 - 10:55 a.m.
CVE-2011-0260
cve-2011-0260
apple
mac os x
access restriction bypass
security vulnerability
nvd
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.6%
The CoreProcesses component in Apple Mac OS X 10.7 before 10.7.2 does not prevent a system window from receiving keystrokes in the locked-screen state, which might allow physically proximate attackers to bypass intended access restrictions by typing into this window.
Affected configurations
Node
applemac_os_xMatch10.7.0
ORapplemac_os_xMatch10.7.1
ORapplemac_os_x_serverMatch10.7.0
ORapplemac_os_x_serverMatch10.7.1
Related
cvelist
cvelist
CVE-2011-0260
2011-10-14 10:00:00
nvd
nvd
CVE-2011-0260
2011-10-14 10:55:08
prion
prion
Design/Logic Flaw
2011-10-14 10:55:00
nessus
nessus
Mac OS X 10.7.x < 10.7.2 Multiple Vulnerabilities
2011-10-13 00:00:00
securityvulns
securityvulns
Apple OS X multiple security vulnerabilities
2011-10-24 00:00:00
APPLE-SA-2011-10-12-3 OS X Lion v10.7.2 and Security Update 2011-006
2011-10-16 00:00:00
openvas
openvas
Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)
2011-10-20 00:00:00
Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)
2011-10-20 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.6%
Related for CVE-2011-0260