Race condition in Login Window in Apple Mac OS X 10.6.x before 10.6.2, when at least one account has a blank password, allows attackers to bypass password authentication and obtain login access to an arbitrary account via unspecified vectors.
2009-11-10T19:30:01.563
2025-04-09T00:30:58.490
Deferred
CVSSv2: 6.2 (MEDIUM)
AV:L/AC:H/Au:N/C:C/I:C/A:C
1.9
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | apple | mac_os_x | 10.6 | Yes |
Operating System | apple | mac_os_x | 10.6.1 | Yes |
Operating System | apple | mac_os_x_server | 10.6 | Yes |
Operating System | apple | mac_os_x_server | 10.6.1 | Yes |