2 matches found
CVE-2010-1838
Directory Services in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 does not properly handle errors associated with disabled mobile accounts, which allows remote attackers to bypass authentication by providing a valid account name...
CVE-2010-1838
CVE-2010-1838 affects Apple Mac OS X Directory Services: a data/error-handling flaw in disabled mobile account processing can allow a local attacker to bypass password validation and log in with a valid account name on Mac OS X 10.5.8 and 10.6.x up to but not including 10.6.5. The issue is addres...