Race condition in Login Window in Apple Mac OS X 10.5 up to and including 10.5.4, when a blank-password account is enabled, allows malicious users to bypass password authentication and login to any account via multiple attempts to login to the blank-password account, followed by selection of an arbitrary account from the user list.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.5.3 |
||
apple mac os x 10.5 |
||
apple mac os x server 10.5 |
||
apple mac os x server 10.5.1 |
||
apple mac os x 10.5.1 |
||
apple mac os x server 10.5.4 |
||
apple mac os x server 10.5.3 |
||
apple mac os x 10.5.4 |
||
apple mac os x server 10.5.2 |
||
apple mac os x 10.5.2 |