Mac OS major security flaw : PSA

Some info from a Vulnerability Analyst at CERT/CC ...

The Apple High Sierra root issue is bad. If you have exposed "Screen Sharing", you can allow people into your machine with full GUI access, using no password. Setting the root password appears to prevent this from happening.


Apple "Remote Management" also has the same exposure. If "Control" is enabled, that gives full interactive remote root access to a system, without requiring a password.

 
Apple has now released a security update to fix this problem.

Apple said:
Impact: An attacker may be able to bypass administrator authentication without supplying the administrator’s password

Description: A logic error existed in the validation of credentials. This was addressed with improved credential validation.

Unbelievable bug has been discovered (though who knows for how long has it been exploited)
This flaw was mentioned on Apple's Developer forums on November 13th 2017.
 
Last edited:
Back
Top