Security Advisory
CVE-2006-4396
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The Apple Type Services (ATS) server in Mac OS X 10.4.8 and earlier does not securely create log files, which allows local users to create and modify arbitrary files via unspecified vectors, possibly relating to a symlink attack.