MacOS Programmer's Window Vulnerability
----------------------------------------------------------------------------
----
SUMMARY
A bug in the idle screen allows interrupting the idle screen by using the
programmer's switch (on Macs that have one) or cmd-pwr on the Macs that
don't have one. This drops the user into a micro debugger; from there a
user can kill the screen saver process and gain access to the machine.
DETAILS
Vulnerable system:
Apple MacOS 9.0
Under MacOS the key combination CMD-PWR (Command key + Power Key) or the
programmer's switch (on models that have one) will start up the
micro-debugger or an assembly debugger such as MacsBug. This behavior
occurs even while the screen is locked after the user becoming idle. This
allows a user to drop into the debugger and kill the screen lock process
and obtain access to the desktop.
ADDITIONAL INFORMATION
This vulnerability has been discovered by:
<mailto:[EMAIL PROTECTED]> Zachary Keane.
========================================
-------
AFLHI 058009990407128029/089802---(102598//991024)
milis ini didukung oleh :
>> http://www.indolinux.com - dunia linux indonesia
-------------------------------------------------------------------
untuk berhenti kirim email ke [EMAIL PROTECTED]
untuk melihat peraturan kirim email ke [EMAIL PROTECTED]
arsip berada di http://www.mail-archive.com/[email protected]
