67 matches found
Setting a custom FileVault (macOS FDE) passphrase
FileVault 2 is the full-disk encryption system of macOS. Normally, it's turned on from System Preferences, and locks the disk with the passwords of all the users allowed to unlock the machine. Overloading the login/unlock/sudo password is an understandable UX simplicity choice, but makes it very...
Setting a custom FileVault (macOS FDE) passphrase
FileVault 2 is the full-disk encryption system of macOS. Normally, it's turned on from System Preferences, and locks the disk with the passwords of all the users allowed to unlock the machine. Overloading the login/unlock/sudo password is an understandable UX simplicity choice, but makes it very...
Apple operating system Yosemite and then exposed the new vulnerability hack no password to the root PC-vulnerability warning-the black bar safety net
According to foreign media reports,Apple OS X Yosemite and then exposed new vulnerabilities. The attacker needs to use the OS IOKit null pointer and the Shell of deception verification to carry out attacks, using this method, the hacker without a password to obtain root permissions. Reported that...
Rootpipe — Critical Mac OS X Yosemite Vulnerability Allows Root Access Without Password
A Swedish Security researcher has discovered a critical vulnerability in Apple’s OS X Yosemite that gives hackers the ability to escalate administrative privileges on a compromised machine, and allows them to gain the highest level of access on a machine, known as root access. The vulnerability,...
Inception - Attacking FireWire Devices
Inception is a FireWire physical memory manipulation and hacking tool exploiting IEEE 1394 SBP-2 DMA. The tool can unlock any password accepted and escalate privileges to Administrator/root on almost any powered on machine you have physical access to. The tool can attack over FireWire, Thunderbol...
Apple Mac OS X Multiple Vulnerabilities - 02 (Jan 2014)
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Command injection
Disk Management in Apple Mac OS X before 10.8.4 does not properly authenticate attempts to disable FileVault, which allows local users to cause a denial of service loss of encryption functionality via an unspecified command line...
CVE-2013-0985
Disk Management in Apple Mac OS X before 10.8.4 does not properly authenticate attempts to disable FileVault, which allows local users to cause a denial of service loss of encryption functionality via an unspecified command line...
Mac OS X FileVault Plaintext Password Logging
Plaintext passwords were discovered in a system log file. Mac OS X Lion release 10.7.3 enabled a debug logging feature that causes plaintext passwords to be logged to /var/log/secure.log on systems that use certain FileVault configurations. A local attacker in the admin group or an attacker with...
Apple Mac OS X filevault information leakage
Encrypted file system password is written in cleartext to log file...
Mac OS X 10.7.x < 10.7.4 Multiple Vulnerabilities (BEAST)
The remote host is running a version of Mac OS X 10.7.x that is prior to 10.7.4. The newer version contains numerous security-related fixes for the following components : - Login Window - Bluetooth - curl - HFS - Kernel - libarchive - libsecurity - libxml - LoginUIFramework - PHP - Quartz Compose...
Apple Legacy filevault barn door...
As someone said here recently, carefully built crypto has a unfortunate tendency to consist of three thick impregnable walls and a picket fence in the back with the gate left open. That seems to have happened to Apple's older "legacy" Filevault in the current release of MacOX Lion 10.7.3...
Apple Mac OS X FileVault纯文本密码本地安全限制绕过漏洞
BUGTRAQ ID: 53402 Mac OS是一套运行于苹果的Macintosh系列电脑上的操作系统。 在使用"Legacy FileVault"时,FileVault中启用了调试开关,可导致将用户密码保存在纯文本的DEBUGLOG中,通过FireWire目标磁盘模式即可读取密码。成功利用需要OS X从较旧的版本升级并使用"Legacy FileVault"功能。 0 Apple MacOS X 10.7.3 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://support.apple.com/...
Flaw in OS X Lion Encryption Leaves User Credentials in Plaintext
There’s a serious weakness in certain versions of Apple OS X that causes the operating system to store users’ login credentials for the FileVault encrypted storage in plaintext. The bug, which is found in older versions of FileVault present on OS X Lion 10.7.3 systems, enables anyone with admin...
CVE-2011-3212
CoreStorage in Apple Mac OS X 10.7 before 10.7.2 does not ensure that all disk data is encrypted during the enabling of FileVault, which makes it easier for physically proximate attackers to obtain sensitive information by reading directly from the disk device...
Information disclosure
CoreStorage in Apple Mac OS X 10.7 before 10.7.2 does not ensure that all disk data is encrypted during the enabling of FileVault, which makes it easier for physically proximate attackers to obtain sensitive information by reading directly from the disk device...
CVE-2011-3212
CoreStorage in Apple Mac OS X 10.7 before 10.7.2 does not ensure that all disk data is encrypted during the enabling of FileVault, which makes it easier for physically proximate attackers to obtain sensitive information by reading directly from the disk device...
CVE-2011-3212
CVE-2011-3212 affects Apple Mac OS X 10.7 prior to 10.7.2, where CoreStorage during FileVault enablement may not encrypt all disk data, enabling physically proximate attackers to read sensitive data from the disk. The description does not specify a fixed remediation in the provided documents; upg...
Apple Revamps Security in OS X Lion
Apple has released the newest version of its OS X operating system, dubbed Lion, and it includes a batch of new security protections that bring it up to the level of Windows and Internet Explorer. The most significant additions, experts say, is the full implementation of ASLR and a sandbox that...
MOAB-13-01-2007: Apple DMG HFS+ do_hfs_truncate() Denial of Service Vulnerability
Summary A specially crafted HFS+ filesystem in a DMG image can cause the dohfstruncate function to panic the kernel denial of service, when attempting to remove a file from the mounted filesystem. This issue can't lead to arbitrary code execution, although there's a significant risk of local HFS+...