OS X Lion has a serious security vulnerability related to LDAP, reports say. If a machine is using LDAP to authenticate access to other resources, a person can use any password for logins as long as they get past Lion's initial login process. The issue is said to be particularly sensitive in an enterprise environment. "As pen testers, one of the first things we do is attack the LDAP server," explains Errata Security CEO Rob Graham. "Once we own an LDAP server we own everything. I can walk up to any laptop (in an organization) and log into it."
