CVE-2007-0723
Unspecified vulnerability in the authentication feature for DirectoryService (DS Plug-Ins) for Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote authenticated LDAP users to modify the root password and gain privileges via unknown vectors.
Date published : 2007-03-13
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html