CVE-2014-4425 Information

Description

CFPreferences in Apple OS X before 10.10 does not properly enforce the \require password after sleep or screen saver begins\ setting which makes it easier for physically proximate attackers to obtain access by leveraging an unattended workstation.

Reference

http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html http://www.securityfocus.com/bid/70630 http://www.securitytracker.com/id/1031063 https://exchange.xforce.ibmcloud.com/vulnerabilities/97640 https://support.apple.com/kb/HT6535