There seems to be a major flaw in Apple’s macOS High Sierra operating system that allows anyone to log into a machine and gain system administrator access without so much as entering a password.
The vulnerability was publicly disclosed on Twitter this afternoon; it’s not clear whether the problem was privately reported to Apple ahead of time, which is the encouraged practice when security vulnerabilities are uncovered. (The company maintains an invite-only bug bounty program.) Despite its incredibly alarming simplicity, The Verge is not reproducing the steps to bypass High Sierra’s login screen here.
However, The Verge has been able to confirm the major security issue remains present as of MacOS 10.13.1, the current release of High...
from
https://www.theverge.com/2017/11/28/16711782/apple-macos-high-sierra-critical-password-security-flaw
from
http://ifeeltechinc.blogspot.com/2017/11/major-apple-security-flaw-grants-admin.html
No comments:
Post a Comment