CVE-2009-0014

Name of the Vulnerable Software and Affected Versions Apple Mac OS X version 10.5.6

Description The issue concerns the Folder Manager in Apple Mac OS X, which uses insecure default permissions when recreating a Downloads folder after it has been deleted. This allows local users to bypass intended access restrictions and read the Downloads folder.

Recommendations For Apple Mac OS X version 10.5.6, consider manually adjusting the permissions of the recreated Downloads folder to enforce intended access restrictions until a patch is available. As a temporary workaround, restrict access to the Downloads folder to minimize the risk of unauthorized access.