Tuesday, November 28, 2017

Root access without a password in MacOS?



Sometimes, Fact is stranger than fiction

A new bug in Apple’s operating system MacOS allows anyone to become an admin by entering “root” as login and then pressing enter.

Several information security professionals confirmed to Motherboard that they can reproduce the bug on MacOS 10.13, the latest version of the operating system.


This bug allows any user logged into MacOS to authenticate as root without entering an admin password. And if the Mac has more than one user, this attack works even if the computer is locked.

The bug allows someone to change other users’ passwords since the bug unlocks the system keychain. 

For More:
https://motherboard.vice.com/en_us/article/3kvxg5/apple-mac-bug-root-admin-without-password

No comments:

Post a Comment