← back
CVE-2014-1380

CVE-2014-1380

EPSS 0.4%
The Security - Keychain component in Apple OS X before 10.9.4 does not properly implement keystroke observers, which allows physically proximate attackers to bypass the screen-lock protection mechanism, and enter characters into an arbitrary window under the lock window, via keyboard input.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2014-06/0172.htmlhttp://support.apple.com/kb/HT6296http://www.securitytracker.com/id/1030505