ACL Integrity Bypass Vulnerability in Apple OS X Finder

ACL Integrity Bypass Vulnerability in Apple OS X Finder

CVE-2014-1264 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:P/A:N

Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.

Learn more about our User Device Pen Test.