Unrated severityNVD Advisory· Published Nov 10, 2009· Updated Jun 16, 2026
CVE-2009-2829
CVE-2009-2829
Description
Event Monitor in Apple Mac OS X 10.5.8 does not properly handle crafted authentication data sent to an SSH daemon, which allows remote attackers to cause a denial of service via vectors involving processing of XML log documents by other services, related to a "log injection" issue.
Affected products
2- cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*
- Range: =10.5.8
Patches
Vulnerability mechanics
References
4- support.apple.com/kb/HT3937nvdPatchVendor Advisory
- www.securityfocus.com/bid/36956nvdPatch
- lists.apple.com/archives/security-announce/2009/Nov/msg00000.htmlnvdVendor Advisory
- www.vupen.com/english/advisories/2009/3184nvd
News mentions
0No linked articles in our index yet.