CVE-2001-1565

Name of the Vulnerable Software and Affected Versions pppd in MacOS x versions 10.0 through 10.1.5

Description The issue allows local users to obtain authentication information, including usernames and passwords, by accessing the command line arguments of the Point to Point Protocol daemon (pppd) process via the ps command.

Recommendations For MacOS x versions 10.0 through 10.1.5, consider restricting access to the ps command or the pppd process to minimize the risk of exploitation. As a temporary workaround, avoid using the pppd daemon until a patch is available or apply configuration changes to prevent local users from accessing sensitive authentication information.