macOS High Sierra Flaw Allows You Unlock App Store Preferences With Any Password, But With An Admin Account

A new security hole was being discovered in the current version of macOS High Sierra that allowed the App Store menu in System Preferences ...

A new security hole was being discovered in the current version of macOS High Sierra that allowed the App Store menu in System Preferences to be unlocked with any password. It's worth to note here that it can't be accessed with a non-administrator account. And Apple already patched the bug in the latest macOS 10.13.3 beta.

In order to reproduce the issue on macOS High Sierra version 10.13.2, which is the latest public release of the operating system, you are required to use an administrator account. System Preferences, click on App Store, click on the padlock icon to lock it if necessary. click on the padlock icon again, enter your username and any password, and click Unlock.


This means that anyone with administrator-level access to your Mac could unlock the App Store preferences, and enable or disable settings to automatically install macOS updates, app updates. The good news is that this bug appears to be only limited to the App Store preference page, suggesting user accounts and other settings can’t be changed.

Apple will likely want to fix this latest security vulnerability as quickly as possible, so it's possible we'll see a similar supplemental update released, or perhaps it will fast track the release of macOS High Sierra version 10.13.3. As for macOS 10.12 or earlier version, we were unable to reproduce the issue on macOS Sierra version 10.12.6, suggesting the issue affects macOS High Sierra only.

Via MacRumors And 9to5Mac, Image Credit Wccftech

COMMENTS

false
Name

(Product)RED,2,#Accessory,2,#App Store,1,#Apple,2,#Apple Music,3,#Apple Park,4,#Apple Pay,4,#Apple Security,3,#Apple Watch,10,#Battery,5,#Bug,1,#CarPlay,2,#Cydia,1,#Face ID,1,#Facebook,1,#FM,1,#Games,2,#HomeKit,2,#HomePod,14,#HowTo,5,#iMac,2,#iMac Pro,3,#Intel,2,#iOS,2,#iOS 11,5,#iOS 11.3,6,#iOS 11.4,1,#iOS 12,2,#iPad,2,#iPhone,21,#iPhone 8,1,#iPhone SE,3,#iPhone SE 2,9,#iPhone X,11,#iPhone X Plus,3,#Jailbreak,13,#Lawsuit,1,#Mac,3,#Mac Pro,2,#MacBook,5,#macOS,10,#MFi,1,#Microsoft,1,#OnePlus,1,#Original Content,2,#Patent,3,#Samsung,1,#Self-Driving,2,#Siri,4,#Tim Cook,1,#Touch ID,2,#TSMC,1,#TV,2,#Wallpaper,1,#watchOS,2,#WWDC,3,3D Touch,2,5G,17,A,1,A11,2,A12,9,A13,3,A14,2,A14. iPhone 2020,1,AAPL,9,ABC News,1,Accessibility,1,Accessories,83,Accessory,2,Activity,1,Ad,5,Adobe,4,Ads,3,AI,1,Airbnb,1,AirDrop,1,AirPlay,3,AirPlay 2,2,AirPod,2,AirPod Pro,1,AirPods,42,AirPods 2,5,AirPods 3,5,AirPods Pro,10,AirPods Studio,2,AirPort,4,AirPower,24,AirTag,3,AirTags,2,Amazon,11,AMD,1,Android,16,App,39,App Store,26,Apple,1899,Apple Arcade,10,Apple Books,1,Apple Camp,1,Apple Car,2,Apple Card,18,Apple Design Awards,1,Apple Event,15,Apple Glasses,1,Apple ID,3,Apple Map,2,Apple Maps,10,Apple Music,38,Apple News,1,Apple News+,4,Apple Park,9,Apple Pay,28,Apple Pay Cash,3,Apple Pencil,6,Apple Retail,10,Apple Security,19,Apple Store,46,Apple TV,34,Apple TV+,19,Apple Watch,144,Apple. Chip,1,Applle,1,Apps,2,AR,12,AR Glasses,12,ARM,6,Bands,2,Battery,30,Beats,10,Beddit,1,Best Buy,1,Beta,24,Bill Gates,1,Black Friday,2,Bloomberg,2,Bose,1,Bug,17,Cable,1,Camera,12,Campis,1,Campus,1,Car,2,CarPlay,7,Carpool Karaoke,3,CCC,1,CES,4,Charger,3,China,15,Chip,3,Chrome,2,Concept,8,Consumer Reports,1,Coronavirus,36,Credit Card,1,Cydia,1,Dark Sky,1,Deals,5,Developer,4,Dialog,1,Dongles,2,Earnings,16,EarPods,1,Economy,1,Edge,1,Education,4,Emoji,8,Environment,6,eSIM,1,EU,2,Event,4,Events,3,Exploit,1,Face ID,19,FaceTime,4,FBI,2,FCC,4,featured,12,Final Cut Pro,2,Firefox,1,Fitbit,1,FM,2,Foldable,1,Foldable iPhone,3,Forum,1,Foxconn,4,France,2,Galaxy S9,1,Game,3,Games,4,gaming,4,Geekbench,1,Germany,1,Gift,1,Google,28,Hack,7,Haptic Touch,2,Headphones,8,Health,30,HomeKit,10,HomePod,41,HowTo,75,Huawei,5,iCloud,12,iFixit,10,iMac,3,iMac Pro,3,iMessage,2,India,9,Intel,15,iOS,132,iOS 10,1,iOS 11,13,iOS 11.3,2,iOS 11.4,2,iOS 12,93,iOS 12.1,3,iOS 12.4,1,iOS 13,68,iOS 13.1,8,iOS 13.1.1,1,iOS 13.1.2,1,iOS 13.1.3,1,iOS 13.2,6,iOS 13.2.2,3,iOS 13.2.3,1,iOS 13.3,12,iOS 13.3.1,6,iOS 13.4,9,iOS 13.4.5,3,iOS 13.5,7,iOS 14,13,iOS 9,1,iOS beta,2,iOS11,32,iOS12,2,iPad,87,iPad Pro,60,iPadOS,10,iPhone,233,iPhone 11,25,iPhone 11 Pro,11,iPhone 11 Pro Max,8,iPhone 12,1,iPhone 20020,1,iPhone 2018,34,iPhone 2019,51,iPhone 2020,58,iPhone 2021,7,iPhone 2022,1,iPhone 3GS,1,iPhone 8,4,iPhone 8 Plus,1,iPhone 9,11,iPhone SE,3,iPhone SE 2,24,iPhone X,88,iPhone X Plus,1,iPhone XE,1,iPhone XR,32,iPhone XS,37,iPhone XS Max,4,iPhone2018,5,iPhones,3,iPhoneSE2,1,iPhoneX,1,iPod,4,iPod touch,8,iTunes,9,iWork,1,Jailbreak,24,Jony Ive,6,KaiOS,1,Keyboard,8,KGI,11,Kuo,29,Laptop,3,Lawsuit,7,LCD,1,Leadership,1,Leak,11,LG,9,Live Radio,1,Logic Pro X,3,Logo,1,Luna Display,1,Mac,76,Mac App Store,1,Mac Mini,4,Mac Pro,17,MacBook,45,MacBook Air,15,MacBook Pro,58,macOS,73,macOS 10.14,33,macOS 10.15,34,macOS 10.16,1,macOS Catalina,13,Magic Keyboard,2,Maps,2,Market,1,Media,1,Micro-LED,1,Microsoft,11,Mini-LED,5,Mother’s Day,1,Netflix,2,News,422,NFC,1,Nike,2,Nomad,1,Notch,1,Nvidia,1,Office,1,OLED,7,Original Content,18,OS X,1,P30,1,Patent,27,Patents,4,PC,2,Pixel,3,Pixel Slate,2,Podcast,2,Powerbeats,9,Privacy,16,Pro Display XDR,4,Project Titan,2,ProRes Raw,1,Qualcomm,11,RAM,1,Refurbished,2,Render,1,Repair,2,Reports,3,Retail,1,Review,2,Roku,1,Rumors,17,Safari,5,Samsung,29,SECURITY,21,Self-Driving,3,Services,4,Shazam,3,Shopping,1,Shortcuts,2,Siri,21,Smartphones,6,Software,3,Spotify,8,Sprint,2,Steve Jobs,5,Stock,20,Subscription,1,Supply Chain,1,Support,24,Swift,1,T-Mobile,3,TANT,2,TeamViewer,1,Technology,1,Tesla,1,Texture,2,Tim Cook,32,Touch Bar,2,Touch ID,6,Tracker,2,Trump,6,TSMC,13,TV,4,TV+,2,tvOS,43,tvOS 12,23,tvOS 13,31,tvOS 13.2,1,tvOS 14,1,tvOS12,2,Twitter,1,US,1,USB-C,3,Verzion,1,Video,1,VirnetX,1,VR,1,Wallpaper,16,watchOS,51,watchOS 5,25,watchOS 6,34,watchOS 7,3,WiFi,1,Windows,2,Wireless Charging,15,WWDC,24,Xcode,3,Xiaomi,1,YouTube,3,
ltr
item
Loveios: macOS High Sierra Flaw Allows You Unlock App Store Preferences With Any Password, But With An Admin Account
macOS High Sierra Flaw Allows You Unlock App Store Preferences With Any Password, But With An Admin Account
https://2.bp.blogspot.com/-zsPAQxOPkdA/WlZUWC_I4GI/AAAAAAAACkE/D6ov8KR0ys0bDlbCMgJXz6Jk6Zsls-zpgCEwYBhgL/s640/Mac-App-Store-main.jpg
https://2.bp.blogspot.com/-zsPAQxOPkdA/WlZUWC_I4GI/AAAAAAAACkE/D6ov8KR0ys0bDlbCMgJXz6Jk6Zsls-zpgCEwYBhgL/s72-c/Mac-App-Store-main.jpg
Loveios
https://www.loveios.net/2018/01/macos-high-sierra-app-store-password-bug.html
https://www.loveios.net/
https://www.loveios.net/
https://www.loveios.net/2018/01/macos-high-sierra-app-store-password-bug.html
true
1784436446950495761
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content