Sensitive Information Exposure in App Store Log Files

Sensitive Information Exposure in App Store Log Files

CVE-2011-0197 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

App Store in Apple Mac OS X before 10.6.8 creates a log entry containing a user's AppleID password, which might allow local users to obtain sensitive information by reading a log file, as demonstrated by a log file that has non-default permissions.

Learn more about our User Device Pen Test.