← back
CVE-2010-0545

CVE-2010-0545

EPSS 0.3%
The Finder in DesktopServices in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, does not set the expected file ownerships during an "Apply to enclosed items" action, which allows local users to bypass intended access restrictions via normal filesystem operations.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.htmlhttp://secunia.com/advisories/40220http://securitytracker.com/id?1024103http://support.apple.com/kb/HT4188http://www.securityfocus.com/bid/40871http://www.vupen.com/english/advisories/2010/1481