A researcher at the Defense in Depth blog has discovered a flaw in Apple’s recently released operating system, OS X 10.7 (Lion), which allows passwords to be changed without knowledge of the logged in user’s password. The flaw appears related to Apple’s move towards a local directory service which has permissions set in an insecure […]
Latest Comments