PT-2008-2596 · Apple · Preview+1

Published

2008-03-18

Updated

2017-08-08

CVE-2008-0994

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Apple Mac OS X version 10.5.2

Description The issue concerns the use of 40-bit RC4 encryption when saving a PDF file with encryption in Preview, making it easier for attackers to decrypt the file via brute force methods.

Recommendations For Apple Mac OS X version 10.5.2, consider using alternative encryption methods or updating the encryption settings to use a more secure encryption algorithm until a patch is available. As a temporary workaround, avoid using the Preview application to save PDF files with encryption.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2008-0994

Affected Products

Macos X

Preview

PT-2008-2596 · Apple · Preview+1

CVE-2008-0994

Weakness Enumeration

Related Identifiers

Affected Products

References · 10