Apple Mac OS X RSS Visualizer QuartzComposerScreenSaver Restriction Bypass
Physical Access Required
Loss of Integrity
Mac OS X contains a flaw that may allow a malicious user to bypass screensaver password protection. The issue is triggered when a malicious local user clicks a link in the RSS Visualizer screensaver, which will open the URL even if a password has been set on the screensaver. It is possible that the flaw may allow unauthorized access resulting in a loss of integrity.
Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.