CVE-2004-1081

Description

The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session.

Software From Fixed in
apple / mac_os_x 10.2 10.2.x
apple / mac_os_x 10.2.1 10.2.1.x
apple / mac_os_x 10.2.2 10.2.2.x
apple / mac_os_x 10.2.3 10.2.3.x
apple / mac_os_x 10.2.4 10.2.4.x
apple / mac_os_x 10.2.5 10.2.5.x
apple / mac_os_x 10.2.6 10.2.6.x
apple / mac_os_x 10.2.7 10.2.7.x
apple / mac_os_x 10.2.8 10.2.8.x
apple / mac_os_x 10.3 10.3.x
apple / mac_os_x 10.3.1 10.3.1.x
apple / mac_os_x 10.3.2 10.3.2.x
apple / mac_os_x 10.3.3 10.3.3.x
apple / mac_os_x 10.3.4 10.3.4.x
apple / mac_os_x 10.3.5 10.3.5.x
apple / mac_os_x 10.3.6 10.3.6.x
apple / mac_os_x_server 10.2 10.2.x
apple / mac_os_x_server 10.2.1 10.2.1.x
apple / mac_os_x_server 10.2.2 10.2.2.x
apple / mac_os_x_server 10.2.3 10.2.3.x
apple / mac_os_x_server 10.2.4 10.2.4.x
apple / mac_os_x_server 10.2.5 10.2.5.x
apple / mac_os_x_server 10.2.6 10.2.6.x
apple / mac_os_x_server 10.2.7 10.2.7.x
apple / mac_os_x_server 10.2.8 10.2.8.x
apple / mac_os_x_server 10.3 10.3.x
apple / mac_os_x_server 10.3.1 10.3.1.x
apple / mac_os_x_server 10.3.2 10.3.2.x
apple / mac_os_x_server 10.3.3 10.3.3.x
apple / mac_os_x_server 10.3.4 10.3.4.x
apple / mac_os_x_server 10.3.5 10.3.5.x
apple / mac_os_x_server 10.3.6 10.3.6.x
apple / quicktime_streaming_server 4.1.1 4.1.1.x
apple / darwin_streaming_server 4.1.3 4.1.3.x
apple / darwin_streaming_server 5.0.1 5.0.1.x