[原文]The installation of Dantz Retrospect Client 5.0.540 on MacOS X 10.2.6, and possibly other versions, creates critical directories and files with world-writable permissions, which allows local users to gain privileges as other users by replacing programs with malicious code.
The installion procedure for the Dantz Retrospect Client creates a new StartupItems subdirectory with world-writable permissions. A malicious local user could modify this script to perform any action they want with the privileges of the operating system.
Dantz software has not published a solution to this problem. An unofficial solution involves changing the permissions of the files manually. The /Library/StartupItems and /Library/StartupItems/RetroClient directories should be mode 775, the files in /Library/StartupItems/RetroClient should be mode 755.