CVE-2009-0011
Certificate Assistant in Apple Mac OS X 10.5.6 allows local users to overwrite arbitrary files via unknown vectors related to an "insecure file operation" on a temporary file.
Date published : 2009-02-12
http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html