Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2742

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-2742
Last Modified 05 Sep 2008 04:52:34
Published 25 Oct 2005 08:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2742

Summary

SecurityAgent in Apple Mac OS X 10.4.2, under certain circumstances, can cause the "Switch User..." button to appear even though the "Enable fast user switching" setting is disabled, which can allow attackers with physical access to gain access to the desktop and bypass the "Require password to wake this computer from sleep or screen saver" setting.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.4.2

  • Apple Mac Os X Server 10.4.2


References

CIAC - P-312

SECUNIA - 16920

AUSCERT - ESB-2005.0732

APPLE - APPLE-SA-2005-09-22


Last Updated: 27 May 2016 10:40:37