Mac.OSX.DSStore.Access.Content.Disclosure

description-logoDescription

This indicates a file disclosure vulnerability in Mac OS X.
There is a vulnerability in some versions of Mac OS X that allows attackers to list the files within a chosen directory via a specially crafted URL requesting .DS_Store under that directory.

affected-products-logoAffected Products

Any unprotected Mac OS X running a web server (Apache) is vulnerable.

Impact logoImpact

Information leak may assist future attacks.

recomended-action-logoRecommended Actions

Apply appropriate patches or Upgrade the system to the latest non-vulnerable version.
Configure the web server to block the access to .DS_Store.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)