CVE-2008-2331

Name of the Vulnerable Software and Affected Versions: Apple Mac OS X versions 10.5 through 10.5.4

Description: The issue is related to the Finder in Apple Mac OS X, where it does not properly update permission data in the Get Info window after a lock operation that modifies Sharing & Permissions in a filesystem. This might allow local users to leverage weak permissions that were not intended by an administrator.

Recommendations: For Apple Mac OS X versions 10.5 through 10.5.4, consider updating the operating system to a version that properly handles permission updates after lock operations. As a temporary workaround, manually verify and update permissions in the Get Info window after modifying Sharing & Permissions to ensure intended access controls are in place.