Apple · Macos X · CVE-2012-0656
**Name of the Vulnerable Software and Affected Versions**
Apple Mac OS X versions 10.7.x through 10.7.3
**Description**
A race condition exists in the LoginUIFramework of Apple Mac OS X, allowing physically proximate attackers to login to arbitrary accounts by entering the account name and no password when the Guest account is enabled.
**Recommendations**
For Apple Mac OS X versions 10.7.x through 10.7.3, update to version 10.7.4 or later to resolve the issue.