I can confirm this with Mac OSX 10.2.6 (Darwin 6.6)
It appears as though there's a buffer overflow somewhere in the password
handling of the screen saver password. I haven't done enough testing to
know whether priviledge escalation is possible, but it might be.
It appears as though there's a buffer overflow somewhere in the password
handling of the screen saver password. I haven't done enough testing to
know whether priviledge escalation is possible, but it might be.
At the best, this bug renders the s...
[ more ]