Apple · Os X · CVE-2014-4391
**Name of the Vulnerable Software and Affected Versions**
Apple OS X versions prior to 10.10
**Description**
The issue allows remote attackers to bypass intended app-author restrictions by omitting an execution-related resource in signed bundles, due to improper handling of incomplete resource envelopes in the Code Signing feature.
**Recommendations**
For versions prior to 10.10, update to version 10.10 or later to resolve the issue.