Michael Kisor

**Name of the Vulnerable Software and Affected Versions** Mac OS X versions prior to 10.9 **Description** The issue concerns the Screen Lock implementation, which does not immediately transition into the locked state when the Lock Screen command is given through the Keychain Status menu. Instead, it relies on a certain timeout setting, allowing physically proximate attackers to obtain sensitive information by reading a screen that should have been locked. **Recommendations** For Mac OS X versions prior to 10.9, update to version 10.9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X version 10.5.8 **Description** The issue is related to a timing problem in the Application Firewall, which causes it to drop unspecified firewall rules after a system reboot. This might allow remote attackers to bypass intended access restrictions by sending specially crafted packet data. **Recommendations** For Apple Mac OS X version 10.5.8, consider restarting the Application Firewall service after each reboot to minimize the risk of exploitation. Additionally, restrict access to sensitive services and data to reduce the potential impact of this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.