Mac.OSX.DSStore.Access.Content.Disclosure
Description
This indicates a file disclosure vulnerability in Mac OS X.
There is a vulnerability in some versions of Mac OS X that allows attackers to list the files within a chosen directory via a specially crafted URL requesting .DS_Store under that directory.
Affected Products
Any unprotected Mac OS X running a web server (Apache) is vulnerable.
Impact
Information leak may assist future attacks.
Recommended Actions
Apply appropriate patches or Upgrade the system to the latest non-vulnerable version.
Configure the web server to block the access to .DS_Store.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |