An issue in handling file permissions was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macOS High Sierra 10.13. A local attacker may be able to execute non-executable text files via an SMB share.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mac_os_x | Apple | 10.11 (including) | 10.11.6 (excluding) |
| Mac_os_x | Apple | 10.12 (including) | 10.12.5 (including) |
| Mac_os_x | Apple | 10.11.6 (including) | 10.11.6 (including) |
| Mac_os_x | Apple | 10.11.6-security_update_2016-001 (including) | 10.11.6-security_update_2016-001 (including) |
| Mac_os_x | Apple | 10.11.6-security_update_2016-002 (including) | 10.11.6-security_update_2016-002 (including) |
| Mac_os_x | Apple | 10.11.6-security_update_2016-003 (including) | 10.11.6-security_update_2016-003 (including) |
| Mac_os_x | Apple | 10.11.6-security_update_2017-001 (including) | 10.11.6-security_update_2017-001 (including) |
| Mac_os_x | Apple | 10.11.6-security_update_2017-002 (including) | 10.11.6-security_update_2017-002 (including) |
| Mac_os_x | Apple | 10.11.6-security_update_2017-003 (including) | 10.11.6-security_update_2017-003 (including) |