Mac OS X Security Issue: Screensaver Security Issue/Hack

Site Information

	About this site
	Site Background
	Who runs the site
	Advertising
	Security Consulting
	Employment/Jobs
	Feedback Form

SecureMac Software

	MacScan
	PrivacyScan

Mac OS X Security

	Root Shell in 4 steps with setuid apps
	sudo buffer overflow exploit + fix
	Disable Single User Boot Mode
	Malevolence - Dumping Passwords
	nidump security
	Startup Security - Open Firmware Password Protection

Mac OS X Network Security

	OpenSSH for Mac OS X
	SAINT
	Secure FTP Wrapper
	Ettercap - sniffer interceptor logger
	Snort - Network Intrusion Detection System
	SSH Admin
	SSH Helper
	xnu - enable MAC Address spoofing

Mac OS X Virus

Virex for Mac OS X - Command Line Scanner

Mac OS X Firewalls

	BrickHouse Firewall Utility
	Firewalk Firewall Utility
	NetBarrier X

Mac OS X App Sec.

Timbuktu OS X Preview Security Advisory + Fix

Mac OS X Encryption

	LittleSecrets
	Crypt for Mac OS X
	GPGMail - PGP Functionality

Mac OS X DoS

Mac OS X CGI Flaw

SecureMac Library

	Data Loss Prevention & Recover
	Mac Cable Modem Security
	Mac Security Auditing
	Mac OS X Security Understanding
	Mac OS X Security Second Lessons
	Mac OS X Security Third Lesson
	Mac OS X Single User Mode Root Access
	Mac OS X Shareware Firewalls
	Mac OS X Secure Installation
	Cable & DSL Connections - Security Measures
	Better Safe than Sorry
	Apple.com Security Resources
	Marketing Macintosh Security Programs

Security Issue: Mac OS X Screensaver Password Protection Bug
Systems Vulnerable: Mac OS X 10.2.6 and prior
Date Fixed: TBA

Apple's Mac OS X screensaver apparently contains a buffer overflow vulnerability that causes the screensaver to dump not requiring the user to enter a legitimate username and password.

When enabling the password protection on the Mac OS X screensaver users are required to authenticate before leaving the screensaver to gain access to the desktop again. Delfim Machado notified Apple that he had learned of a bug that caused the screensaver to exit without properly authenticating. The vulnerability was discovered when he held down a key on his keyboard for more than five minutes then pressed enter.

Solution:
When leaving your computer for a long period of time it is suggested to log out all-together so there are not any active programs open or files in use that could lose data upon a improper shutdown.

Apple will address this issue and a fix will be available shortly, this document will be updated when a fix is released.

Interact:
Could not connect