Improper Deletion of Trash Files in Apple OS X Allows for Sensitive Information Disclosure

Improper Deletion of Trash Files in Apple OS X Allows for Sensitive Information Disclosure

CVE-2015-5901 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The Secure Empty Trash feature in Finder in Apple OS X before 10.11 improperly deletes Trash files, which might allow local users to obtain sensitive information by reading storage media, as demonstrated by reading a flash drive.

Learn more about our User Device Pen Test.