Showing 1 - 4 of 4

CVE-2017-13872

Status Candidate

Overview

An issue was discovered in certain Apple products. macOS High Sierra before Security Update 2017-001 is affected. The issue involves the "Directory Utility" component. It allows attackers to obtain administrator access without a password via certain interactions involving entry of the root user name.

Related Files

Apple Remote Desktop Root: Posted Sep 1, 2024; Authored by jgor | Site metasploit.com; Enable and set root account to a chosen password on unpatched macOS High Sierra hosts with either Screen Sharing or Remote Management enabled.; tags | exploit, remote, root; advisories | CVE-2017-13872; SHA-256 | 93618f0baeb5c0e067ea241b7e1873b7821075be229823de87b392c83e276231; Download | Favorite | View

Apple Security Advisory 2017-12-6-1: Posted Dec 8, 2017; Authored by Apple | Site apple.com; Apple Security Advisory 2017-12-6-1 - macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan are now available and address issues in apache, curl, and more.; tags | advisory; systems | apple; advisories | CVE-2017-1000254, CVE-2017-13826, CVE-2017-13833, CVE-2017-13844, CVE-2017-13847, CVE-2017-13848, CVE-2017-13855, CVE-2017-13858, CVE-2017-13860, CVE-2017-13862, CVE-2017-13865, CVE-2017-13867, CVE-2017-13868, CVE-2017-13869, CVE-2017-13871, CVE-2017-13872, CVE-2017-13875, CVE-2017-13876, CVE-2017-13878, CVE-2017-13883, CVE-2017-3735, CVE-2017-9798; SHA-256 | 3918e25736c0918763ac137433051db5b4a68c6701db5e97911b5001522fb8e4; Download | Favorite | View

Apple Security Advisory 2017-11-29-2: Posted Dec 1, 2017; Authored by Apple | Site apple.com; Apple Security Advisory 2017-11-29-2 - An attacker may be able to bypass administrator authentication without supplying the administrator's password Description: A logic error existed in the validation of credentials. This was addressed with improved credential validation.; tags | advisory; systems | apple; advisories | CVE-2017-13872; SHA-256 | d1caeb89bf3189579b272d84f58ff120543420c9d279bc6f03bbd20691276039; Download | Favorite | View

Apple Security Advisory 2017-11-29-1: Posted Dec 1, 2017; Authored by Apple | Site apple.com; Apple Security Advisory 2017-11-29-1 - An attacker may be able to bypass administrator authentication without supplying the administrator's password. A logic error existed in the validation of credentials. This was addressed with improved credential validation. suffers from a bypass vulnerability.; tags | advisory, bypass; systems | apple; advisories | CVE-2017-13872; SHA-256 | f4201e73331165b83356487e95a29618e9ff1f2c9a834f1343b9b62ace030047; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 297 files
Ubuntu 69 files
Debian 20 files
Gentoo 8 files
Apple 6 files
Google Security Research 4 files
LiquidWorm 4 files
Spencer McIntyre 3 files
Alter Prime 3 files
Jann Horn 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2017-13872

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems