CVE-2005-1472
First published: Thu May 19 2005(Updated: )
Certain system calls in Apple Mac OS X 10.4.1 do not properly enforce the permissions of certain directories without the POSIX read bit set, but with the execute bits set for group or other, which allows local users to list files in otherwise restricted directories.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple iOS and macOS | =10.4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2005-1472?
CVE-2005-1472 is rated as a moderate severity vulnerability due to improper permission enforcement.
How do I fix CVE-2005-1472?
To fix CVE-2005-1472, ensure that proper permissions are set on restricted directories in Mac OS X 10.4.1.
What are the consequences of CVE-2005-1472?
The consequences of CVE-2005-1472 include unauthorized access to sensitive files by local users.
Which version of Mac OS X is affected by CVE-2005-1472?
CVE-2005-1472 specifically affects Apple Mac OS X version 10.4.1.
Can local users exploit CVE-2005-1472?
Yes, local users can exploit CVE-2005-1472 to list files in restricted directories.
- agent/type
- agent/first-publish-date
- agent/references
- agent/author
- agent/remedy
- agent/description
- agent/severity
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/apple
- canonical/apple ios and macos
- version/apple ios and macos/10.4.1