PT-2012-1707 · Apple · Macos X
Michael Roitzsch
·
Published
2012-02-02
·
Updated
2012-02-03
·
CVE-2011-3462
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Mac OS X versions prior to 10.7.3
Description
The issue allows remote attackers to obtain sensitive information contained in new backups by spoofing a storage object. This is due to the Time Machine feature not verifying the unique identifier of its remote AFP volume or Time Capsule.
Recommendations
For Mac OS X versions prior to 10.7.3, update to version 10.7.3 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Macos X