Vulnerabilities > CVE-2006-0401 - Local Authentication Bypass vulnerability in Apple Mac OS X Intel-Based
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unspecified vulnerability in Mac OS X before 10.4.6, when running on an Intel-based computer, allows attackers with physical access to bypass the firmware password and log on in Single User Mode via unspecified vectors.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Nessus
NASL family | MacOS X Local Security Checks |
NASL id | MACOSX_10_4_6.NASL |
description | The remote host is running a version of Mac OS X 10.4.x that is prior to 10.4.6. Mac OS X 10.4.6 contains a security fix for a local authentication bypass vulnerability. A malicious local user may exploit this vulnerability to bypass the firmware password and gain access to Single User mode. This vulnerability only affects intel-based Macintoshes. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 21175 |
published | 2006-04-03 |
reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/21175 |
title | Mac OS X 10.4.x < 10.4.6 Firmware Unspecified Password Bypass |
code |
|
References
- http://docs.info.apple.com/article.html?artnum=303567
- http://secunia.com/advisories/19462
- http://securitytracker.com/id?1015859
- http://www.osvdb.org/24399
- http://www.securityfocus.com/bid/17364
- http://www.vupen.com/english/advisories/2006/1215
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25620