PT-2010-2291 · Apple · Macos X

Patrik Karlsson

Published

2010-03-30

Updated

2013-09-10

CVE-2010-0533

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions prior to 10.6.3

Description A directory traversal issue in the AFP Server allows remote attackers to list a share root's parent directory and read and modify files within it. The exact vectors used for exploitation are not specified.

Recommendations For versions prior to 10.6.3, update to version 10.6.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the AFP Server until the update can be applied.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2010-0533

Affected Products

Macos X

PT-2010-2291 · Apple · Macos X

CVE-2010-0533

Weakness Enumeration

Related Identifiers

Affected Products

References · 3