This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote version of the operating system contains a vulnerability
which has been patched by the vendor in a newer release of the
The remote host is running a version of Mac OS X which is older than
Versions older than 10.4 contain a security issue in the way they handle
the permissions of pseudo terminals.
When an application uses a new pseudo terminal, it can not restrict its
permissions to a safe mode. As a result, every created pseudo terminal
has permissions 0666 set, which allows a local attacker to sniff the session
of other users.
See also :
Upgrade to Mac OS X 10.4 or newer.
Risk factor :
Medium / CVSS Base Score : 6.6
CVSS Temporal Score : 6.6
Public Exploit Available : true
Family: MacOS X Local Security Checks
Nessus Plugin ID: 18352 (macosx_10_4.nasl)
Bugtraq ID: 13467
CVE ID: CVE-2005-1430
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.