Slashdot Mirror

← Back to Stories (view on slashdot.org)

Mac OS X Lion LDAP Vulnerability Emerges

Posted by Soulskill on from the mash-keyboard-for-access dept.

hypnosec tips a bit of Apple news from late last week that got overshadowed by the headlines about Steve Jobs. According to El Reg, "People logging in to Macs running OS X 10.7, aka Lion, can access restricted resources using any password they want when the machines use a popular technology known as LDAP for authentication. Short for Lightweight Directory Access Protocol, LDAP servers frequently contain repositories of highly sensitive enterprise data, making them a goldmine to attackers trying to burrow their way into sensitive networks." Initial reports about this bug cropped up less than a week after Lion was released.

1 of 97 comments (clear)

  1. Re:but... by dimeglio · · Score: 4, Insightful

    Well the Mac in this case is the threat and not the vulnerability. So from that perspective, the Mac itself remains secure.

    --
    Views expressed do not necessarily reflect those of the author.