Lucene search

[email protected]NVD:CVE-2014-1264

HistoryFeb 27, 2014 - 1:55 a.m.

CVE-2014-1264

2014-02-2701:55:04

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

3.3

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.8

Confidence

High

EPSS

Percentile

5.1%

JSON

Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.

Affected configurations

Nvd

Node

applemac_os_xRange≤10.9.1

applemac_os_xMatch10.9

VendorProductVersionCPE
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
applemac_os_x10.9cpe:2.3:o:apple:mac_os_x:10.9:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	mac_os_x	*	cpe:2.3:o:apple:mac_os_x::::::::
apple	mac_os_x	10.9	cpe:2.3:o:apple:mac_os_x:10.9:::::::*

References

support.apple.com/kb/HT6150

CVSS2

3.3

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.8

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2014-1264

seebug2 cvelist1 cve1 prion1 openvas1 nessus1 securityvulns2