Sidney San Martin

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 4 **Description** The issue concerns the Passcode Lock feature in Apple iOS, which fails to properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe. This allows physically proximate attackers to bypass intended passcode requirements. **Recommendations** For Apple iOS versions prior to 4, update to version 4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.6.3 **Description** The issue arises from improper pathname resolution in certain circumstances involving an application's save panel. This allows remote attackers to trigger unintended remote file copying via a crafted share name, but it requires user assistance. **Recommendations** For versions prior to 10.6.3, update to version 10.6.3 or later to resolve the issue.