CVE-2011-0178

Name of the Vulnerable Software and Affected Versions Mac OS X versions prior to 10.6.7

Description The issue allows local users to obtain potentially sensitive information by accessing a world-readable directory provided by the FSFindFolder API in response to a call with the kTemporaryFolderType flag.

Recommendations For versions prior to 10.6.7, update to Mac OS X version 10.6.7 or later to resolve the issue.