A cryptographic weakness existed in the authentication protocol of Remote Desktop. This issue was addressed by implementing the Secure Remote Password authentication protocol. This issue is fixed in Apple Remote Desktop 3.9. An attacker may be able to capture cleartext passwords.
References
Link | Resource |
---|---|
https://support.apple.com/en-us/HT207622 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apple
Published: 2021-12-23T19:48:20
Updated: 2021-12-23T19:48:20
Reserved: 2016-12-01T00:00:00
Link: CVE-2017-2488
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-23T20:15:08.523
Modified: 2022-01-07T15:44:18.000
Link: CVE-2017-2488
JSON object: View
Redhat Information
No data.
CWE