DesktopServices in Apple Mac OS X 10.6 prior to 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote malicious users to trigger unintended remote file copying via a crafted share name.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.6.1 |
||
apple mac os x server 10.6.0 |
||
apple mac os x server 10.6.2 |
||
apple mac os x 10.6.0 |
||
apple mac os x 10.6.2 |
||
apple mac os x server 10.6.1 |