Apple · Tftp Server · CVE-2011-0203
**Name of the Vulnerable Software and Affected Versions**
Apple Mac OS X versions prior to 10.6.8
**Description**
The issue allows remote attackers to list arbitrary directories by using the root directory as the starting point of a recursive listing. This is due to an absolute path traversal vulnerability in the xftpd component of the FTP Server.
**Recommendations**
For versions prior to 10.6.8, update to version 10.6.8 or later to resolve the issue.