Experts say it is limited to the App Store and presents a relatively limited security risk.
Using this preference pane, users can choose to enable or disable automatic downloads and installation of OS security updates among other things.More news: Father invites 14-year-old daughter's bullies to her funeral
Coming soon after a previous "root user" password flaw discovered in December, as well as the Meltdown and Spectre chip flaws, the timing is likely to shake consumer confidence, however.
Enter any bogus password you like and the system will grant you access.More news: Assassin's Creed Rogue Gets 4K Remaster For PS4 and Xbox One
Perhaps the strangest and most troubling part of the bug is the fact that it does prompt the user to login as is typically required any time settings are changed within the operating system-but it doesn't matter if the user actually enters the password. If it is unlocked, lock it and then try unlocking it using your username and any password. Apple later fixed the issue with a security update.
The discovery no doubt brings back memories of the infamous bug that allowed anyone with root access to a device to log in with the least of a hindrance. Our customers deserve better.
The issue has been fixed in the High Sierra 10.13.3 beta, but in the meantime you'll want to make sure that you don't leave yourself logged into an administrator account when the computer is unattended, and also, ensure that any users whom you don't trust are on a standard account rather than an admin account. Maybe Apple already got aware of the loophole and applied the fix. "We are auditing our development processes to help prevent this from happening again", the company said in a statement to UberGizmo.More news: MI analyst Scott Turner leaving for NFL's Carolina Panthers
We should note that these settings are unlocked by default on administrator accounts, as they aren't especially sensitive.
- Netflix releases trailer for 'Altered Carbon'
- What everyone is missing in Zuma's state capture announcement
- CES 2018: vivo Showcases First Phone with In-screen Fingerprint Sensor
- CES 2018: Blackout in Vegas
- Jack White Releases Two New Songs
- 'It was so ferocious': Passengers recall terrifying cruise through 'bomb cyclone'
- Opioid Crisis Worse for Farm Families
- Baltimore Hospital 'Takes Responsibility' For Woman Left Outside In Cold
- Trump dissolving his commission on election integrity
- Traffic moving after hours-long interstate shutdown