*Mac OS X Firmware Password Bypass Vulnerability*
*Secunia Advisory SA19462
Print Advisory
<http:/
/secunia.com/advisories/19462/print/>
*Release Date 2006-04-04
*Critical
Less critical <http
://secunia.com/about_secunia_advisories/>
*Impact
Security Bypass
*Where
Local system
*Solution Status Vendor
Patch
*OS
Apple Macintosh OS X <http://secunia.com
/product/96/>
Select a product and view a complete list of all
Patched/Unpatched
Secunia advisories affecting it.
*CVE reference
CVE-2006-0401
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE
-2006-0401>
*Description*:
A vulnerability has been reported in Mac OS X, which can be
exploited by
malicious people with physical access to a system to bypass
certain
security restrictions.
The vulnerability is caused due to an unspecified error and
makes it
possible to bypass the firmware password and start-up an
Intel-based
Macintosh computer in "Single User" mode.
*Solution*:
Update to version 10.4.6.
http://www.ap
ple.com/support/downloads/
*Provided and/or discovered by*:
The vendor credits David Pugh, University of Michigan.
*Original Advisory*:
Apple:
http://docs.info.apple.com/article.html?artnum=303567
/Please note: The information, which this Secunia Advisory
is based
upon, comes from third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability
reports
issued by security research groups, vendors, and others./
--
--
I haven't failed, I've found 10,000 ways that don't work.
Thomas Edison (1847-1931)
============= PCWorks Mailing List =================
Don't see your post? Check our posting guidelines &
make sure you've followed proper posting procedures,
http://pcworkers.com/r
ules.htm
Contact list owner <owner-pcworks imagicomm.com>
Unsubscribing and other changes: http://pcworkers.com
=====================================================
|