Password disclosure vulnerability in PostgreSQL via graphical installersID: oval:org.secpod.oval:def:15490 | Date: (C)2013-09-20 (M)2022-10-10 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS X Lion 10.7 through 10.7.5, Mac OS X Mountain Lion 10.8 through 10.8.4 and is prone to password disclosure vulnerability. The flaw is present in the PostgreSQL, possibly 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, 8.4.x before 8.4.17, and 8.3.x before 8.3.23, which incorrectly provides the superuser password to scripts related to "graphical installers for Linux and Mac OS X,". Successful exploitation could allow attackers to have unspecified impact and attack vectors.
Platform: |
Apple Mac OS X 10.7 |
Apple Mac OS X Server 10.7 |
Apple Mac OS X 10.8 |
Apple Mac OS X Server 10.8 |