CVE-2008-0055

Name of the Vulnerable Software and Affected Versions Apple Mac OS X version 10.4.11

Description The issue allows local users to cause a denial of service and possibly gain privileges by modifying copied files. This occurs because world-writable directories are created while NSFileManager copies files recursively, and permissions are only modified afterward.

Recommendations For Apple Mac OS X version 10.4.11, consider restricting access to the NSFileManager functionality to minimize the risk of exploitation. As a temporary workaround, avoid using the recursive file copy feature in NSFileManager until a patch is available.