Improper link resolution before file access (‘link following’) in Windows App for Mac allows an authorized attacker to elevate privileges locally.