![]() “By testing this vulnerability on your own computer, you’ll end up creating (or modifying) a persistent root user account on your system. Security experts warned that the security hole was both embarrassing for the company and dangerous, allowing anyone with physical access – and in some instances remote access – to a Mac computer to gain full access to user data.Įdward Snowden commented on the bug saying: “Imagine a locked door, but if you just keep trying the handle, it says “oh well” and lets you in without a key.”Įxperts also warn against trying out the bug for yourself, as once enabled the flaw can then be more easily exploited even on a locked Mac. Some bug in authentication is ENABLING root with no password the first time it fails!” CoyoteDen said: “Oh my god that should not work, but it does. The solution was then followed by exclaims of surprise that Apple’s software permitted such an action. If you’re able to log in (hurray, you’re the admin now).” Enter username: root and leave the password empty. A developer called Chethan Kamath, writing under the username chethan177, wrote on 13 November: “On startup, click on “Other”. The security flaw was originally detailed as a solution to a user login problem on Apple’s developer support forum.
0 Comments
Leave a Reply. |