CVE-2009-0013

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.4.11 through 10.5.6

Description The issue allows local users to gain privileges by listing process information, as dscl in DS Tools requires passwords to be provided as command line arguments.

Recommendations For Apple Mac OS X versions 10.4.11 through 10.5.6, consider restricting access to the dscl command to minimize the risk of exploitation. As a temporary workaround, avoid using the dscl command with password arguments until a fix is available.