CVE-2008-3610

CVE-2008-3610 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:C

Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-password account is enabled, allows attackers to bypass password authentication and login to any account via multiple attempts to login to the blank-password account, followed by selection of an arbitrary account from the user list.

Learn more about our User Device Pen Test.