SecurityAgent in Apple OS X prior to 10.10 does not ensure that a Kerberos ticket is in the cache for the correct user, which allows local users to gain privileges in opportunistic circumstances by leveraging a Fast User Switching login.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x |