Apple · Macos X · CVE-2008-3609
**Name of the Vulnerable Software and Affected Versions**
Mac OS X versions 10.5 through 10.5.4
**Description**
The issue is related to the kernel in Mac OS X, which does not properly flush cached credentials during the recycling of a vnode. This might allow local users to bypass the intended read or write permissions of a file.
**Recommendations**
For Mac OS X versions 10.5 through 10.5.4, update to a version later than 10.5.4 to resolve the issue.