Source: http://www.businessinsider.com/white-hat-hacker-discovered-security-flaw-rootpipe-in-os-x-2014-11
A Swedish white-hat hacker has discovered a serious vulnerability in OS X Yosemite that may extend to previous Mac operating systems as well, reports The Hacker News' Mohit Kumar.
The vulnerability, called "Rootpipe," appears to have been discovered by Emil Kvarnhammar, a consultant at IT security firm TrueSec.
Rootpipe allows outside users to gain administrator-level access to Macs running OS X Yosemite, Mavericks, or Mountain Lion without a password.
The security flaw gives attackers the opportunity to steal information, install malicious programs, or erase users' hard drives.
Kvarnhammar, for his part, appears to be waiting for Apple to patch Rootpipe before saying much about it:
Details on the #rootpipe exploit will be presented, but not now. Let's just give Apple some time to roll out a patch to affected users.
— Emil Kvarnhammar (@emilkvarnhammar) October 16, 2014
Rootpipe has probably been around since at least 2012, according to Swedish tabloid Aftonbladet.
Apple has not publically acknowledged the security flaw and is expected to patch it in mid-January 2015, reports ZDNet.
We've reached out to Apple for comment and will update this post if we hear back.
SEE ALSO: Your Unsaved Files Are Automatically Stored On iCloud
Join the conversation about this story »