CVE-2008-1033

CVE Database · CVE-2008-1033

CVE-2008-1033

· N/AModified

CVSS v3.1

N/A

EPSS

1.55%

Published

Jun 2, 2008

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The scheduler in CUPS in Apple Mac OS X 10.5 before 10.5.3, when debug logging is enabled and a printer requires a password, allows attackers to obtain sensitive information (credentials) by reading the log data, related to "authentication environment variables."

Weaknesses (CWE)

CWE-264

Affected Products (5)

apple · mac_os_x

apple · mac_os_x_server

apple · cupsvulnerable

References (16)

http://lists.apple.com/archives/security-announce/2008//May/msg00001.html

http://secunia.com/advisories/30430

Vendor Advisory

http://securitytracker.com/id?1020145

http://www.securityfocus.com/bid/29412