The scheduler in CUPS in Apple Mac OS X 10.5 prior to 10.5.3, when debug logging is enabled and a printer requires a password, allows malicious users to obtain sensitive information (credentials) by reading the log data, related to "authentication environment variables."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple cups |