Apple Mac OS X FileVault Plain Text Password Local Security Bypass Vulnerability
BID:53402
Info
Apple Mac OS X FileVault Plain Text Password Local Security Bypass Vulnerability
| Bugtraq ID: | 53402 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | May 07 2012 12:00AM |
| Updated: | May 07 2012 12:00AM |
| Credit: | tarwinator |
| Vulnerable: |
Apple Mac Os X 10.7.3 |
| Not Vulnerable: | |
Discussion
Apple Mac OS X FileVault Plain Text Password Local Security Bypass Vulnerability
Apple Mac OS X is prone to a local security-bypass vulnerability.
An attacker can exploit this issue to gain unauthorized access to the affected application.
Apple Mac OS X is prone to a local security-bypass vulnerability.
An attacker can exploit this issue to gain unauthorized access to the affected application.
Exploit / POC
Apple Mac OS X FileVault Plain Text Password Local Security Bypass Vulnerability
An attacker requires local interactive access to exploit the issue.
An attacker requires local interactive access to exploit the issue.
Solution / Fix
Apple Mac OS X FileVault Plain Text Password Local Security Bypass Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Apple Mac OS X FileVault Plain Text Password Local Security Bypass Vulnerability
References:
References:
- Apple Homepage (Apple)
- Mac OS X Homepage (Apple)
- Network user: plain text PWs in client log?! (Apple)