PT-2013-6281 · Apple · Safari

Published

2013-12-17

Updated

2017-08-29

CVE-2013-7127

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Apple Safari version 6.0.5

Description The issue allows local users to obtain sensitive information by reading the LastSession.plist file, which stores cleartext credentials.

Recommendations For Apple Safari version 6.0.5, consider removing or securing access to the LastSession.plist file to prevent unauthorized access to sensitive information.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-310

Related Identifiers

CVE-2013-7127

Affected Products

Safari

PT-2013-6281 · Apple · Safari

CVE-2013-7127

Weakness Enumeration

Related Identifiers

Affected Products

References · 3