Unrated severityNVD Advisory· Published Mar 30, 2010· Updated Jun 16, 2026
CVE-2010-0537
CVE-2010-0537
Description
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to trigger unintended remote file copying via a crafted share name.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
- (no CPE)range: 10.6 < 10.6.3
cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- support.apple.com/kb/HT4077nvdPatchVendor Advisory
- lists.apple.com/archives/security-announce/2010//Mar/msg00001.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.