Open Directory in Apple Mac OS X 10.7 prior to 10.7.2, when an LDAPv3 server is used with RFC 2307 or custom mappings, allows remote malicious users to bypass the password requirement by leveraging lack of an AuthenticationAuthority attribute for a user account.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.7.1 |
||
apple mac os x 10.7.0 |
||
apple mac os x server 10.7.1 |
||
apple mac os x server 10.7.0 |