cpe:/a:apple:mac_os_x:10.5.6 cpe:/o:apple:mac_os_x:10.5 cpe:/o:apple:mac_os_x:10.5.0 cpe:/o:apple:mac_os_x:10.5.1 cpe:/o:apple:mac_os_x:10.5.2 cpe:/o:apple:mac_os_x:10.5.2:2008-002 cpe:/o:apple:mac_os_x:10.5.3 cpe:/o:apple:mac_os_x:10.5.4 cpe:/o:apple:mac_os_x:10.5.5 cpe:/o:apple:mac_os_x:10.5.6 cpe:/o:apple:mac_os_x:10.5.7 cpe:/o:apple:mac_os_x_server:10.5 cpe:/o:apple:mac_os_x_server:10.5.0 cpe:/o:apple:mac_os_x_server:10.5.1 cpe:/o:apple:mac_os_x_server:10.5.2 cpe:/o:apple:mac_os_x_server:10.5.3 cpe:/o:apple:mac_os_x_server:10.5.4 cpe:/o:apple:mac_os_x_server:10.5.5 cpe:/o:apple:mac_os_x_server:10.5.6 cpe:/o:apple:mac_os_x_server:10.5.7 CVE-2009-2192 2009-08-06T12:30:00.407-04:00 2017-08-16T21:30:41.523-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-08-06T13:51:00.000-04:00 ALLOWS_OTHER_ACCESS BID 35954 SECUNIA 36096 OSVDB 56839 VUPEN ADV-2009-2172 APPLE APPLE-SA-2009-08-05-1 CERT TA09-218A CONFIRM http://support.apple.com/kb/HT3757 XF macosx-mobileme-session-hijack(52432) MobileMe in Apple Mac OS X 10.5 before 10.5.8 does not properly delete credentials upon signout from the preference pane, which makes it easier for attackers to hijack a MobileMe session via unspecified vectors, related to a "logic issue."