lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Thu May 19 16:07:55 2005 From: codesamurai at mac.com (Brian K.) Subject: Mac OSX 10.4 Dashboard Authentication Hijacking Vulnerability > The issue is *any* application shouldn't have the ability to gain > administrative control (by waiting for sudo [intended for something > else] to be done). Self correction/elaboration note: Sorry, that was a tad terse to the point of being incomplete. It was intended to be framed in the context of what was already discussed in this thread. (i.e. something else doing the sudo intended for its own purposes, etc., all of which everyone is already well aware of.)
Powered by blists - more mailing lists