[Full-disclosure] !ADVISORY! + x Thu Mar 16 02:49:51 EST 2006 x + Directory Transversal in Apple MacOSX
adf at code511.com
adf at code511.com
Thu Mar 16 07:49:57 GMT 2006
!ADVISORY! + x Thu Mar 16 02:49:51 EST 2006 x + Directory Transversal in Apple MacOSX
++++++++++++++++++++++++++++++++++++++++++++++++++++
1. BACKGROUND
++++++++++++++++++++++++++++++++++++++++++++++++++++
There has been no background.
++++++++++++++++++++++++++++++++++++++++++++++++++++
2. DESCRIPTION
++++++++++++++++++++++++++++++++++++++++++++++++++++
Remote exploitation of a directory traversal vulnerability in Apple MacOSX could allow attackers to overwrite or view arbitrary files with user-supplied contents.
++++++++++++++++++++++++++++++++++++++++++++++++++++
3. VENDOR RESPONSE
++++++++++++++++++++++++++++++++++++++++++++++++++++
Apple MacOSX was offered no explanation.
++++++++++++++++++++++++++++++++++++++++++++++++++++
APPENDIX A VENDOR INFORMATION
++++++++++++++++++++++++++++++++++++++++++++++++++++
http://www.apple.com/macosx/
++++++++++++++++++++++++++++++++++++++++++++++++++++
APPENDIX B REFERENCES
++++++++++++++++++++++++++++++++++++++++++++++++++++
RFC 4112
Full-Disclosure is hosted and sponsored by Secunia.