The CoreProcesses component in Apple Mac OS X 10.7 prior to 10.7.2 does not prevent a system window from receiving keystrokes in the locked-screen state, which might allow physically proximate malicious users to bypass intended access restrictions by typing into this window.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.7.1 |
||
apple mac os x 10.7.0 |
||
apple mac os x server 10.7.1 |
||
apple mac os x server 10.7.0 |