Weblog in Mac OS X Server 10.4.11 does not properly check an error condition when a weblog posting access control list is specified for a user that has multiple short names, which might allow attackers to bypass intended access restrictions.
References
Configurations
Information
Published : 2008-10-10 03:30
Updated : 2017-08-07 18:32
NVD link : CVE-2008-4215
Mitre link : CVE-2008-4215
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
apple
- mac_os_x_server