• Home
  • News
  • OS X
  • OS X Lion Includes Serious New Security Vulnerability

OS X Lion Includes Serious New Security Vulnerability

OS X Lion Includes Serious New Security Vulnerability

Researchers at Errata Security have pointed out a new security vulnerability in OS X Lion that could allow certain users to access restricted network resources without requiring a password.

The vulnerability is related to LDAP, which is a protocol that email and other programs use to look up information from a server. With this vulnerability, any machine using LDAP to access other resources could use any password at all as logins as long as they can successfully log in to Lion.

The issue is especially dangerous for enterprise environments, as the vulnerability makes it extremely simple for a user to access potentially sensitive resources that they aren’t authorized to access.

The hole apparently existed before Apple released the 10.7.1 patch for Lion, which raises significant concerns as to why it wasn’t patched at that time. It’s expected that Apple will patch this security hole in OS X Lion 10.7.2.

Related

  1. Apple Agrees to Offer Refunds to Australian iPad Buyers Over ‘Misleading’ 4G Claims
  2. Mac App Store May Prevent Incompatible Macs from Downloading Mountain Lion
  3. What’s New in iOS 8 Beta 3: T-Mobile Wi-Fi Calling, iCloud Drive Access, More
  4. Here’s How You’ll Pay For Your Big Mac Using Apple Pay
  5. 2011 MacBook Pro GPU Complaint Petition Reaches 18K Signatures
  6. Apple Revises ‘App Store’ Lawsuit to Include Kindle Fire
Apple Giveaways

iPhone X Giveaway

$999

Enter

MacBook Pro Giveaway

$1499.00

Enter

10.5″ iPad Pro Giveaway

$649.00

Enter

iPhone 8 Plus Giveaway

$800.00

Enter
Share