CVE-2009-0138
servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers to modify the system configuration.
Date published : 2009-02-12
http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html