CVE-2011-0212

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions prior to 10.6.8

Description The issue allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consumption), via an XML-RPC request containing an entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Recommendations For Apple Mac OS X versions prior to 10.6.8, update to version 10.6.8 or later to resolve the issue.