[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-95273-9

Platform: cpe:/o:apple:mac_os_11, cpe:/o:apple:mac_os_x:10.15Date: (C)2020-12-08   (M)2023-07-04



"Ensure Only root has the UID 0 The built in root account is disabled by default and administrator users are required to use sudo to run a process with the UID '0'. If another account with UID '0' exists, this is a sign of a network intrusion or a malicious user that is attempting to circumvent security controls."


Parameter:

[does_not_exist/exists]


Technical Mechanism:

Fix:Investigate as to why any additional accounts were set up with a UID of '0'.

CCSS Severity:CCSS Metrics:
CCSS Score : 7.2Attack Vector: NETWORK
Exploit Score: 1.2Attack Complexity: LOW
Impact Score: 5.9Privileges Required: HIGH
Severity: HIGHUser Interaction: NONE
Vector: AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HScope: UNCHANGED
 Confidentiality: HIGH
 Integrity: HIGH
 Availability: HIGH
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:71709
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:67519


OVAL    2
oval:org.secpod.oval:def:67519
oval:org.secpod.oval:def:71709
XCCDF    2
xccdf_org.secpod_benchmark_general_Mac_OS_11
xccdf_org.secpod_benchmark_general_Mac_OS_X_10_15

© SecPod Technologies