Keystroke Bypass Vulnerability in Apple Mac OS X 10.7

Keystroke Bypass Vulnerability in Apple Mac OS X 10.7

CVE-2011-0260 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The CoreProcesses component in Apple Mac OS X 10.7 before 10.7.2 does not prevent a system window from receiving keystrokes in the locked-screen state, which might allow physically proximate attackers to bypass intended access restrictions by typing into this window.

Learn more about our Physical Security Assessment.