Slashdot Mirror


Screensaver Bug in Mac OS X

dave1212 writes "Still too early to tell, but there seems to be a screen saver password exploit in Mac OS X. It was discovered and postedon the Full Disclosure list earlier today. Theories, personal tests, and rumours abound, with some success stories, and the possibility that it could affect all Cocoa programs. Speculation points toward a 2048 character buffer, with people using the emacs shortcuts Ctrl-K and Ctrl-Y to fill the text field in under half a minute."

8 of 452 comments (clear)

  1. Finally, there's no objection! by HomerNet · · Score: 5, Funny

    A full, easily exploitable security hole in MacOS X. Now all those windoids will have no reason not to switch, as MacOS X now provides all the features of Windows, including a security hole.

    --
    I have no tag line
    1. Re:Finally, there's no objection! by fireman+sam · · Score: 5, Funny

      The real reason that Apple didn't go with Linux is because they had a conversation with RMS. The outcome of which would have resulted in the calling of the product GNU/Linux/OSX/Aqua. Apple just couldn't bring themselves to share the product name with any other company/entity.

      --
      it is only after a long journey that you know the strength of the horse.
  2. Oh my god! by sageFool · · Score: 5, Funny

    Someone with physical access to your machine can access it!! WHO KNEW?! Call in the army reserve and physically secure access to all your machines!

  3. So...my cat by Spoticus · · Score: 5, Funny

    can hop up on the desk and crack OS X?

  4. emacs in a password box... by ceswiedler · · Score: 5, Funny

    Hah! I knew it! Mac OSX isn't based on Mach or BSD at all! It runs on top of emacs!

    Actually, the thing that surprises me is that they managed to trim emacs down so it's only an operating system.

  5. Quick summary of article. by Anonymous Coward · · Score: 5, Funny

    It's been discovered that someone with physical access to your computer can access it.

  6. Doesn't work at all! WTF? by EvilStein · · Score: 5, Funny

    I got drunk last night and passed out at the keyboard and came 'round *six hours later* - a lot longer than the 5 minutes needed for this "exploit" and I STILL couldn't get into my Mac OS X box.

    Couldn't find any more beer, and I couldn't find my pants, either.. but that's another story.. grrr

  7. Re:Hey! I'm famous. by Lev13than · · Score: 5, Funny

    If OS X was truly open source, we'd probably be patching our machines right now, instead of impotently discussing this on slashdot.

    True, except you wouldn't be able to run Fink to download the screensaver patch until you figure out why your computer crashes every time you type with your hardware-hacked keyboard. You suspect that it's because your version of OpenAqua is creating conflicts with GND (GND's Not Darwin), but you can't go online to check because the web forum doesn't support OnSafari 0.1.2.33a.

    --
    When you have nothing left to burn you must set yourself on fire