CVE-2007-0747

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.3.9 through 10.4.9

Description The issue concerns a problem with the load webdav component in Apple Mac OS X, where it fails to properly clean the environment when mounting a WebDAV filesystem. This allows local users to potentially gain privileges by setting unspecified environment variables, such as environment variables.

Recommendations For Apple Mac OS X versions 10.3.9 through 10.4.9, consider restricting access to the load webdav component until a proper fix is applied, and avoid setting sensitive environment variables when mounting WebDAV filesystems.