CVE-2005-3782

Mac OS X 10.4.3 up to 10.4.6, when loginwindow uses the "Name and password" setting, and the "Show the Restart, Sleep, and Shut Down buttons" option is disabled, allows users with physical access to bypass login and reboot the system by entering ">restart", ">power", or ">shutdown" sequences after the username.

Published: Dec 31, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-3782
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
apple / mac_os_x	10.4.3	10.4.3.x
apple / mac_os_x_server	10.4.3	10.4.3.x
apple / mac_os_x_server	10.4.4	10.4.4.x
apple / mac_os_x	10.4.4	10.4.4.x
apple / mac_os_x_server	10.4.5	10.4.5.x
apple / mac_os_x_server	10.4.6	10.4.6.x
apple / mac_os_x	10.4.6	10.4.6.x
apple / mac_os_x	10.4.5	10.4.5.x

http://www.osvdb.org/20776

Vulnerability Database

289,697

CVE-2005-3782