Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.
References
Link | Resource |
---|---|
http://support.apple.com/kb/HT6150 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-02-26 17:55
Updated : 2014-03-10 10:32
NVD link : CVE-2014-1264
Mitre link : CVE-2014-1264
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
apple
- mac_os_x