2 matches found
CVE-2015-6984
libarchive in Apple OS X before 10.11.1 allows attackers to write to arbitrary files via a crafted app that conducts an unspecified symlink attack...
CVE-2015-6984
CVE-2015-6984 affects Apple OS X before 10.11.1 via libarchive. A crafted app can trigger a symlink attack to write to arbitrary files due to path/symlink handling in libarchive. Impact: arbitrary file writes. Mitigation: update to OS X 10.11.1 / Security Update 2015-007.