PT-2011-4318 · Apple · Macos X
Published
2011-10-14
·
Updated
2012-01-14
·
CVE-2011-3225
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Apple Mac OS X versions prior to 10.7.2
Description
The issue concerns the SMB File Server component, which fails to restrict access to the share point record of a guest-restricted folder for all guest users. This allows remote attackers to bypass intended browsing restrictions by leveraging access to the nobody account.
Recommendations
For Apple Mac OS X versions prior to 10.7.2, update to version 10.7.2 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Macos X