Revealed: Apple’s Unpatched Mac Security Flaw
Is your Apple (NASDAQ:AAPL) computer vulnerable to this OS security flaw? According to ArsTechnica, security researchers have recently developed another method for exploiting a previously discovered bug in OS X.
The vulnerability is related to the so-called “sudo” flaw that was exposed five months ago. That flaw allowed attackers to bypass normal password authentication procedures by resetting the computer clock to January 1, 1970. According to ArsTechnica, that date is considered the operating system’s beginning date and is also known as the Unix epoch.
After using the sudo command and resetting the date, an attacker can trick a computer into turning over root privileges without ever using a password. Although this vulnerability has been known for five months, Metasploit developers recently created a module that makes it even easier to exploit this bug on Macs.