Open Directory in Apple Mac OS X 10.7 prior to 10.7.2 does not require a user to provide the current password before changing this password, which allows remote malicious users to bypass intended password-change restrictions by leveraging an unattended workstation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x server 10.7.1 |
||
apple mac os x server 10.7.0 |
||
apple mac os x 10.7.1 |
||
apple mac os x 10.7.0 |