CVE-2005-2742

Published: Oct 26, 2005Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

SecurityAgent in Apple Mac OS X 10.4.2, under certain circumstances, can cause the "Switch User..." button to appear even though the "Enable fast user switching" setting is disabled, which can allow attackers with physical access to gain access to the desktop and bypass the "Require password to wake this computer from sleep or screen saver" setting.

Affected (2)

Products: Apple: Mac Os X, Mac Os X Server

2 products

Mac Os X Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Version 10.4.2
Apple Mac Os X Server	Version 10.4.2

References (8)

http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/16920/

Source: cve@mitre.org

PatchVendor Advisory

http://www.auscert.org.au/5509

Source: cve@mitre.org

Vendor Advisory

http://www.ciac.org/ciac/bulletins/p-312.shtml

Source: cve@mitre.org

US Government Resource

http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/16920/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.auscert.org.au/5509

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.ciac.org/ciac/bulletins/p-312.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.