CVE-2005-1727

Apple Mac OS X 10.4.x up to 10.4.1 sets insecure world- and group-writable permissions for the (1) system cache folder and (2) Dashboard system widgets, which allows local users to conduct unauthorized file operations via "file race conditions."

Published: Jun 8, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1727
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.7
AV:L/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
apple / mac_os_x_server	10.4.1	10.4.1.x
apple / mac_os_x_server	10.4	10.4.x

http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html

Vulnerability Database

290,206

CVE-2005-1727