PT-2006-5197 · Kerberos+1 · Kerberos+1
Ragnar Sundblad
·
Published
2006-10-02
·
Updated
2017-07-20
·
CVE-2006-4393
CVSS v2.0
3.7
Low
| Vector | AV:L/AC:H/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Apple Mac OS X versions 10.4 through 10.4.7
Description
The issue allows local users to gain access to Kerberos tickets of other users when Fast User Switching is enabled. This could potentially lead to unauthorized access.
Recommendations
For Apple Mac OS X versions 10.4 through 10.4.7, consider disabling Fast User Switching as a temporary workaround to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Kerberos
Macos X