Does this create a local root exploit for Mac OS X using Finder?
August 30, 2009 7:01 AM Subscribe
Why does Apple's Finder bypass some group permissions?
posted by jeffburdges to computers & internet (15 answers total) 3 users marked this as a favorite
A directory /Games is owned by the Games user and Games group and has mode 750. The Admin user may not access /Games from unix programs, like say bash. But said Admin user may happily access /Games from Finder! wtf?!?
I imagine this means Finder is running as gid 0, which seems like a major security risk. I noticed that /Games isn't accessible from Finder if the group is changed to wheel, group 0, which mitigates the most obvious security risks. But a buffer overflow in Finder could surely give gid 0 access! wtf?!?