Apple Mac OS X 10.4.x up to 10.4.1 sets insecure world- and group-writable permissions for the (1) system cache folder and (2) Dashboard system widgets, which allows local users to conduct unauthorized file operations via "file race conditions."
2005-06-08T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 3.7 (LOW)
AV:L/AC:H/Au:N/C:P/I:P/A:P
1.9
6.4
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | apple | mac_os_x_server | 10.4 | Yes |
Operating System | apple | mac_os_x_server | 10.4.1 | Yes |