|
|
CVE Reference: CVE-2006-4396 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4396 |
|
|
Description: The Apple Type Services (ATS) server in Mac OS X 10.4.8 and earlier does not securely create log files, which allows local users to create and modify arbitrary files via unspecified vectors, possibly relating to a symlink attack. |
|
|
CVE Status: Candidate |
|
|
References: ST 1017301 SAID Secunia Advisory: SA23155 OSVDB 30739 CONFIRM http://docs.info.apple.com/article.html?artnum=304829 CERT-VN 323424 CERT http://www.us-cert.gov/cas/techalerts/TA06-333A.html BID 21335 APPLE http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html |
|
| Return to the previous page. |
