He says that the bug can allow access through both the login screen and screen saver lock screens for Macs joined by Active Directory. This was addressed with improved credential validation.”Īccording to Centrify director of product management Peter Havens, the vulnerability has significant risks for enterprises that use Macs.
“A logic error existed in the validation of credentials.
#VULNERABILITY FOR MAC HIGH SIERRA UPDATE#
“An attacker may be able to bypass administrator authentication without supplying the administrator’s password,” the company says in its Security Update 2017-001 report. The company confirms suspicions that the vulnerability does have real dangers. The vulnerability, CVE-2017-13872, was patched by Apple yesterday. The login then results in all superuser access rights to the OS, leaving users’ data wide open for access. Apple has been quick to address another major security flaw in its macOS High Sierra 10.13.1 operating system after keen-eyed users found that anyone could gain root access to the system with a few easy steps.Īccording to reports, any person can log into a Mac device that runs High Sierra by using ‘root’ as the username and pressing the enter key several times.
0 kommentar(er)
