The Text Formats component in Apple OS X prior to 10.10.5, as used in TextEdit, allows remote malicious users to read arbitrary files via a text file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x |