CVE-2005-2742 — Apple MAC OS X vulnerability

2 documents2 sources

Severity

4.6MEDIUMNVD

EPSS

0.1%

top 76.66%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedOct 26

Latest updateMay 1

Description

SecurityAgent in Apple Mac OS X 10.4.2, under certain circumstances, can cause the "Switch User..." button to appear even though the "Enable fast user switching" setting is disabled, which can allow attackers with physical access to gain access to the desktop and bypass the "Require password to wake this computer from sleep or screen saver" setting.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

▶NVDapple/mac_os_x10.4.2

▶NVDapple/mac_os_x_server10.4.2

Patches

Patch: secunia.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-6vqw-grcm-99rq: SecurityAgent in Apple Mac OS X 10↗2022-05-01

▶