Mac OS X 10.4.x < 10.4.6 Firmware Unspecified Password Bypass
Medium Nessus Plugin ID 21175
SynopsisThe remote host is missing a Mac OS X update which fixes a security issue.
DescriptionThe remote host is running a version of Mac OS X 10.4.x that is prior to 10.4.6.
Mac OS X 10.4.6 contains a security fix for a local authentication bypass vulnerability. A malicious local user may exploit this vulnerability to bypass the firmware password and gain access to Single User mode.
This vulnerability only affects intel-based Macintoshes.
SolutionUpgrade to Mac OS X 10.4.6 :