CVE-2009-0141

CVSS 5.5 - MEDIUM
Description

XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, creates tty devices with insecure world-writable permissions, which allows local users to write to the Xterm of another user.

Affected Products
4
Vendor Product Version
apple mac_os_x 10.4.11
apple mac_os_x 10.5.6
apple mac_os_x_server 10.4.11
apple mac_os_x_server 10.5.6
References
http://lists.apple.com/archives/security-announce/...
http://secunia.com/advisories/33937
http://securitytracker.com/alerts/2009/Feb/1021729...
http://support.apple.com/kb/HT3438
http://www.securityfocus.com/bid/33798
http://www.vupen.com/english/advisories/2009/0422
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
http://lists.apple.com/archives/security-announce/...
http://secunia.com/advisories/33937
http://securitytracker.com/alerts/2009/Feb/1021729...
http://support.apple.com/kb/HT3438
http://www.securityfocus.com/bid/33798
http://www.vupen.com/english/advisories/2009/0422
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
Weakness Types
CWE-732
CVE Information
CVE ID:
CVE-2009-0141
Published:
2009-02-13
Modified:
2026-04-23
CVSS Score:
5.5
Severity:
MEDIUM
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Affected Vendors
apple
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL