Mac OS X AFP Server Vulnerability Affecting File Permission Management
CVE-2005-1720

Currently unrated

Key Information:

Vendor: Apple
Status: Afp Server
Vendor: CVE Published:; 16 June 2005

Summary

The AFP Server in Mac OS X 10.4.1 exhibits a significant vulnerability when dealing with Access Control Lists (ACLs) on volumes. When files are copied into directories that do not utilize ACLs, the server fails to adequately remove the ACL from these files. This oversight leads to the potential override of POSIX file permissions, allowing unintended access controls to persist. Administrators should be aware of this issue to ensure proper file management and security practices.

References

http://lists.apple.com/archives/security-announce/2005/Ju...

vendor-advisoryx_refsource_APPLE

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jun 16, 2005