Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-0064
cve-2010-0064
desktopservices
apple
mac os x
file ownership
bypass
security vulnerability
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
8.2 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 preserves file ownership during an authenticated Finder copy, which might allow local users to bypass intended disk-quota restrictions and have unspecified other impact by copying files owned by other users.
Affected configurations
Node
applemac_os_xMatch10.6.0
ORapplemac_os_xMatch10.6.1
ORapplemac_os_xMatch10.6.2
ORapplemac_os_x_serverMatch10.6.0
ORapplemac_os_x_serverMatch10.6.1
ORapplemac_os_x_serverMatch10.6.2
Related
prion
prion
Design/Logic Flaw
2010-03-30 18:30:00
cvelist
cvelist
CVE-2010-0064
2022-10-03 16:21:12
nvd
nvd
CVE-2010-0064
2010-03-30 18:30:00
nessus
nessus
Mac OS X 10.6.x < 10.6.3 Multiple Vulnerabilities
2010-03-29 00:00:00
threatpost
threatpost
Apple Mega Patch Covers 88 Mac OS X Vulnerabilities
2010-03-29 17:15:44
openvas
openvas
Mac OS X 10.6.3 Update / Mac OS X Security Update 2010-002
2010-05-12 00:00:00
Mac OS X 10.6.3 Update / Mac OS X Security Update 2010-002
2010-05-12 00:00:00
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
8.2 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2010-0064