Apple Mac OS X may allow network accounts to bypass service access controls. This vulnerability may allow remote users with a valid network account to bypass LoginWindow service access controls.
Remote access to a system can be restricted by service access controls via LoginWindow. According to Apple Security Update 2006-006:
A logic error in loginwindow allows network accounts without GUIDs to bypass service access controls.
This vulnerability may allow remote users with a valid network account to bypass LoginWindow service access controls.
This issue was reported in Apple Security Update 2006-006.
This document was written by Chris Taschner.
|Date First Published:||2006-10-02|
|Date Last Updated:||2006-10-02 20:04 UTC|