PT-2015-2294 · Apple · Os X

Nasser Alnasser

Published

2015-10-09

Updated

2016-12-08

CVE-2015-5901

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Apple OS X versions prior to 10.11

Description The issue is related to the Secure Empty Trash feature in Finder, which improperly deletes Trash files. This might allow local users to obtain sensitive information by reading storage media. For example, an attacker could read a flash drive to access protected information.

Recommendations For Apple OS X versions prior to 10.11, consider disabling the Secure Empty Trash feature in Finder until a patch is available to prevent potential exploitation. Restrict access to sensitive files and storage media to minimize the risk of information disclosure.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2015-11648

CVE-2015-5901

Affected Products

Os X

PT-2015-2294 · Apple · Os X

CVE-2015-5901

Weakness Enumeration

Related Identifiers

Affected Products

References · 5